Open In App

Autopsy – Cyber Forensic Browser in Kali Linux

Last Updated : 03 Jun, 2022
Improve
Improve
Like Article
Like
Save
Share
Report

The Autopsy is a cyber forensic tool used for the analysis of Windows and UNIX file systems (NTFS, FAT, FFS, EXT2FS, and EXT3FS). It can also be used to recover deleted files and also show various sectors of uploaded images making it easier to make an in-depth analysis of the image. In this article, we will go through the actual usage of Autopsy Forensic Browser on the Linux operating system.

Installation of Autopsy

Execute the below command in the terminal for installing the Autopsy browser on the Linux system.

sudo apt-get install autopsy

Usage of Autopsy Browser

Step 1: Opening Autopsy by typing the command in the terminal.

  • Click on Applications in Kali Linux
  • Search for autopsy
  • Enter the password in autopsy(root)

 

root@kali:~# autopsy -h

Invalid flag: -h

/usr/bin/autopsy is the command to use.

[-c][-C][-d evid_locker][[-i device filesystem mnt][-p port][remoteaddr]

-c: in the URL, force a cookie.

-C: No cookies are allowed in the URL.

-i device filesystem mnt: provide the evidence locker directory.

-d dir: specify the evidence locker directory.

-p port: provide the port of the server (default: 9999).

remoteaddr: use the browser to provide the host (default: localhost).

Step 2: Launching Autopsy through the browser.

Click on the link of localhost from the autopsy shell to launch autopsy in the default browser.

 

Now, we will select the name from the list. Here, we have selected the name Sudo.

 

Step 3: Adding Host.

  • Start a new case.
  • Add a new host or select any previously created firewall.

 

Step 4: Adding Image.

After creating the host, upload the image of the drive(generally have an extension of .dd).

 

Step 5: Analyzing Files.

After this click on FILE ANALYSIS.

 

Why is Autopsy Kali Linux Digital Forensic Toolkit better?

Autopsy provides a GUI to perform cyber forensic investigations like file hashing, deleted file recovery, file analysis, and case management. It is open-source software and can do an analysis of  NTFS, FAT, FFS, EXT2FS, and EXT3FS. Autopsy Kali Linux does not consume a lot of resources and maybe run inside VirtualBox. We can use as many resources as we like in the sandbox environment. And, best of all, it’s completely free. We receive all of the core and future features for free. It’s a terrific area to study and work on at the same time without having to switch up your forensic toolbox. 


Like Article
Suggest improvement
Previous
How to use Hydra to Brute-Force SSH Connections?
Next
Xcapy - Tool For XSS Detection Suite for CTFs games
Share your thoughts in the comments

Similar Reads

Kali-Whoami - Stay anonymous on Kali Linux
How to Access the Dark Web Using the TOR Browser in Kali Linux
How to Install Tor Browser on Kali Linux? [2024]
Difference Between Arch Linux and Kali Linux
Kali Linux - Password Cracking Tool
XSS-Freak - XSS Scanner Fully Written in Kali Linux
Sherlock - Hunt Username on Social Media Kali Linux Tool
TheSpeedX / TBomb - Call and SMS Bomber for Kali Linux
YetAnotherSMSBomber - SMS Bomber in kali linux
Gasmask – Information Gathering Tool in Kali Linux

E
ehtck
Article Tags :
We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy
Lightbox