HomeTechnologyLinux

Learn Forensics Mode in Kali Linux

Kali Linux 'Live' provides users with ' forensic mode ', a feature introduced for the first time in BackTrack Linux.

The cause of the "Forensic mode live boot" option becomes popular

The " Forensic mode live boot " option has become very popular for many reasons:

  1. Kali Linux is a wide and easy to use application, many potential users have installed Potassium ISO or bootable USB drives.
  2. When a need for analysis occurs, Kali Linux 'Live' helps quickly and easily bring Kali Linux into operation.
  3. Kali Linux comes preinstalled with the most popular open source analysis software, a handy set of tools when you need to do analytics.

Download Kali Linux

Learn Forensics Mode in Kali Linux Picture 1

Changes of Forensic mode with the system

When booted into Forensic mode boot mode, there are a few important changes to the regular operation of the system:

  1. First, the internal hard drive will never be touched. If there is a swap partition, it will not be used and no internal drive is automatically mounted. We have verified this by taking a standard system and removing the hard drive. A 'hash' has been added to the drive using a commercial legal package. We then re-attached the drive to the computer and started Kali Linux 'Live' in Forensic mode. After using Kali for a period of time, we turn off the system, remove the hard drive and retrieve 'hash'. These suitable 'hash' shows that nothing changes on the drive in any way.
  2. Another important change is that the auto-attaching of mobile devices will be disabled. USB drives, CDs and similar devices will not be automatically attached to Kali Linux when they are inserted into the computer. The idea behind this is simple: In Forensic mode, nothing happens to any media without direct user action. Whatever you do as a user depends on you.

If you plan to use Potassium in Forensic mode, we recommend you to research it carefully. All analytical tools need to be validated to make sure you know what specific effects they have in each case.

Finally, when Kali continues to focus on providing the best collection of open source penetration testing tools available, we may not have mentioned your favorite tool. If yes, let us know in the comment section below!

See more:

  1. Kali Linux commands from AZ and commonly used commands
  2. Instructions for installing Kali Linux on Windows 10 are easier than ever
  3. How to install and use Kali Linux on VmWare virtual machine
4.1 ★ | 52 Vote
potassium linux

You should read it

May be interested

  • Kali Linux is available on the Windows Store but is flagged by Windows DefenderKali Linux is available on the Windows Store but is flagged by Windows Defender
    kali linux is available on windows 10 store for use with windows subsystem for linux, but it cannot bypass windows defender.
  • How to install Kali Linux on macOSHow to install Kali Linux on macOS
    since the release of kali linux 1.0.8, kali linux supports efi. this additional feature simplifies the process of installing and running potassium on various apple macbook air, pro and retina models.
  • How to Install Kali Linux NetHunter on AndroidHow to Install Kali Linux NetHunter on Android
    kali linux is the most popular security and penetration testing operating system in the world. thanks to the nethunter project, you can now install kali linux on your android phone.
  • How to install Kali Linux reduced versionHow to install Kali Linux reduced version
    kali mini iso or kali linux's shortened version is a convenient way to install a minimal potassium system and install it 'from scratch'.
  • How to install Kali Linux dual boot on macOSHow to install Kali Linux dual boot on macOS
    since the release of kali linux 1.0.8, kali linux supports adding efi. this additional feature simplifies the process of installing and running potassium on various apple macbook air, pro and retina models. modeling the device will determine the level of success when users experience with newer devices. refind preinstallation can also increase the success rate on older devices. this tutorial will show you dual osx booting with kali linux using refind and encryption options
  • How to install Kali Linux on Android using Linux DeployHow to install Kali Linux on Android using Linux Deploy
    installing kali linux on android devices is no longer a difficult job thanks to the linux deploy tool. read the following article to learn how to do it.
  • How to install Kali Linux running Dual Boot with WindowsHow to install Kali Linux running Dual Boot with Windows
    instructions detail how to install kali linux running in parallel with windows operating system. tips to install kali linux dual boot with windows, simple and fastest
  • How to encrypt LVM partitions when installing Kali LinuxHow to encrypt LVM partitions when installing Kali Linux
    sometimes, we have sensitive data and want to encrypt using the entire drive encryption. with kali installer, you can start installing lvm partition encryption on both the hard drive or usb drive. the installation procedure is very similar to the normal kali linux installation, except to choose an encrypted lvm partition during installation.
  • Learn about Hibernate mode in LinuxLearn about Hibernate mode in Linux
    when it comes to source options in linux distributions, there are logout, shutdown, suspend and hibernate functions. in today's article, let's learn about hibernate mode in linux.
  • How to conduct IoT pentest with Kali LinuxHow to conduct IoT pentest with Kali Linux
    kali linux can be used to perform many pentest tests on computers in combination with other related techniques. the following are the penetration testing platforms and methods for iot devices related to kali linux.

Linux