Stagos FSE aims to be a computer forensic framework based on FLOSS operating system. Builds from Ubuntu, it has many feature to do forensics stuff. It supports read variant filesystem, include ntfs. It also support read some forensic imaging file from another forensic software such like ENCASE.
Stagos FSE 1.3 build with a bunch of computer forensic tools. Some of, listed on fluxbox menu style, for easy using. This guide, aims to make a new user easier to run Stagos FSE menu.
Main Stagos FSE menu
.xshells
under this menu, user can found 2 aterm emulator and 2 xterm emulator. Both have 2 user mode,user and root.
.internet
under this menu, user can found 4 different application, divide into 2 kind application, browser and IM.
.firefox (GUI)
.elinks , for console(shell)-based browser
.gaim (GUI)
.centerim , for console(shell)-based IM
.fmanager
File manager, this menu, using two kind of file manager, emelfm for X window based file manager, and mc for character mode file manager.
.forensics
on this menu, I devide it into 6 sub menu,
.autopsy
here, user could find some tools that usually used to do forensic stuff, such as autopsy, galetta, afflib, sleuthkit, foremost, tct, rifiuti, fstool, pasco, memdump and libewf.
.disk imaging
just like it name, on this sub menu , user could find a lot of tool that useful to do disk imaging, such as dd, dcfldd, air, ddrescue, rdd and partimage.
.carving
to do carving, user could use some tool on this sub menu, some of them are scalpel, spider, sguil, search monkey and glimpse.
.recovery
on this sub menu, user can found, tools that could be used for recovery things, like, fatback, ripper, dvdisaster, e2undel, magic rescue, vinetto, dares, photorec and ntfs tools.
.info gathering
from this sub menu, an investigator could used some tools that useful for info gathering, like testdisk, idetect, gpart and hdparm.
.cracker
useful for crack Windows based operating system login system. Some of the tool, chntpwd, fcrackzip and ophcrack.
.teditor
user can found some text editor application, such as mousepad, nano, vim and xpdf.
.xtra
on this menu, I add some useful application, that might be used for forensics stuff, such as biew, bsdiff, xfdiff, hfsutils (for MAC OS HFS filesystem), xsteg and outguess.
.sysscanner
this menu, list some application that usually used for scanning things, like clamav and avscan, used for virus scanner, then chrootkit and nmap, for system bugs/exploit scanner.
.burncd
on this menu, user can found cd burner application, divide into 2 kind of cd burner, X window based and console based. They are, xfburn, cdw and cdrecord.
.docs
the aims of this menu, to include some of forensic doc related.
.locksys
there are two application that included on this menu xlock and vlock, xlock used for lock the X system and vlock used for console based system. Protect your work, from another people around.
.installer
to install the Stagos FSE on your disk, NOT TESTED yet, careful with this stuff.
