SIFT Workstation & REMnux Poster Side 2 – SANS faculty members maintain two popular Linux distributions for digital forensics and incident response (DFIR) work. SIFT Workstation™ is a powerful toolkit for examining forensic artifacts related to file system, registry, memory, and network investigations. REMnux® focuses on malware analysis and reverse-engineering tasks. This poster provides a reference to getting started with these freely available toolkits, so you can create your own ultimate forensication machine.
The SIFT & REMnux Poster was created by FOR610 Reverse-Engineering Malware: Analysis Tools and Techniques course author and SANS Certified Instructor Lenny Zeltser and FOR500 Windows Forensics Analysis | FOR508 Advanced Digital Forensics, Incident Response & Threat Hunting course co-author and SANS DFIR Curriculum Lead, Rob Lee with support from the SANS DFIR Faculty.
The DFIR posters are shipped rolled in a tube and measure 24″ x 36″ (slightly larger than the SANS folded version).
Currently shipping within the US only.