I haven't been been able to find a comprehensive list of opensource applications used in the Computer Forensic Community. I know there are a lot tools, but I am not sure there are a lot that people are actually using. If you have an Open Source application that you use in forensics and would like to recommend could you please let us all know?

Opensource tools mostly found in linux live distros:

A good place to look for tools are some of the linux forensic live CD sites. Most sites have a program listing that will have a short description for you to decide which programs to seek out and add to your own tool set.

A short google of an application name can often lead you to a download of the source code or a precompiled binary package for easy install.

I am a Debian person, and where I was able to get source code I created Deb packages for my systems. Below are some links to the software lists on a few live linux cd's used for incident response. Not all live linux CDs are forensically sound in all aspects, so of course take caution. I say this because the standard live cd Kernel that knoppix and other live cds use, can actually change dates and times on Journaled file systems (Reiserfs, ext3, etc). I know that most people will use them on windows machines and not have an issue, but one should know what their tool is doing. I would advise against using any none incident response CDs, as most live linux distros are automatically mounting file systems, in read/write mode. in order to make it easier for the user.

 If you are installing as I do on your own system, you can take the necessary steps to build a good forensically sound kernel, or use hardware write protection.

http://remote-exploit.org/backtrack_docs.html

http://www.lnx4n6.be/index.php?sec=Documentation&page=bootcdcontent

http://backtrack.offensive-security.com/index.php?title=Tools

http://www.e-fense.com/helix/contents.php

http://www.iacis.info/spada.html  -- Note you may need a membership to get info about this live cd.

If you want to get a good start on making sure you are in a completely forensically sound environment check out this site from Thomas Rude (farmerdude). He has some great papers out there.

http://www.crazytrain.com/papers.html

Please if anyone has other URLS , feel free to add. (there are many more)

* check out asrdata's SMART evaluation cd. It also has some nice opensource utilities on the live cd. SMART its self is not opensource, just the accompanied utilities. You can find the info on ASRdata's website. http://www.asrdata.com/

David,
    I am new here. so ummm yeah I'll do my best... Thanks. I'll see if I can get it there tonight when I get home.

Christian...

I've been doing some open source stuff, using Perl, and most of it has been released with my last two books, "Windows Forensic Analysis", and "Perl Scripting for Windows Security".  The stuff I write and include with the books is stuff that I have used myself.