[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] ALE puzzler (or, BusyBox rocks)

Subject: [ale] ALE puzzler (or, BusyBox rocks)
From: greg.freemyer at gmail.com (Greg Freemyer)
Date: Thu, 26 Feb 2009 11:05:58 -0500
In-reply-to: <[email protected]>
References: <[email protected]>

>
> ? tar
> ? netcat
>
>
> ? tar cf - / | nc myServer myPort
>
> combined with the opposite on myServer
>
> ? nc -l -p myPort > embeddedFS.tar
>
> gave me the FS image I wanted. Similarly with /dev/mem, except
> using dd instead of tar. ?This was my first encounter with nc,
> and boy what a helpful thing it is!

Ahhh, I could make a forensic data collection expert out of you in no time.  :)

FYI: nc is in our standard book of tricks, but having done data
collection for 5+yrs, I've never had to use it.  Obviously I'm not
senior enough for those skills.

But seriously, I have book lerning.  I can do the job.  Trust me.

Greg
-- 
Greg Freemyer
Litigation Triage Solutions Specialist
http://www.linkedin.com/in/gregfreemyer
First 99 Days Litigation White Paper -
http://www.norcrossgroup.com/forms/whitepapers/99%20Days%20whitepaper.pdf

The Norcross Group
The Intersection of Evidence & Technology
http://www.norcrossgroup.com

References:
- [ale] ALE puzzler (or, BusyBox rocks)
  - From: jknapka at kneuro.net (JK)

Prev by Date: [ale] [JOBS] Sr. Systems Administrator positions
Next by Date: [ale] upding software issue
Previous by thread: [ale] ALE puzzler (or, BusyBox rocks)
Next by thread: [ale] ALE puzzler (or, BusyBox rocks)
Index(es):
- Date
- Thread