본문 바로가기
security/포렌식

The EnCase Network Boot Disk 생성 링크

김재벌 2009. 2. 19. 18:28
Encase 네트워크 부트 디스크 생성 링크 입니다.

The EnCase Network Boot Disk

The EnCase Network Boot Disk (ENBD) is now capable of both autodetecting network cards as well as allowing the user to specify what network card he or she is using.

If the user chooses the AUTO method, the ENBD will autodetect the network card, load the appropriate DOS drivers, then launch EnCase for DOS into server mode.

If the MANUAL method is chosen, the user has to specify the network card that he/she is using on the Subject machine. The ENBD will then load the appropriate DOS driver and launch EnCase for DOS.


Latest Update January 2006

Notice: The ENBD is intended for users of the EnCase application. The EN.EXE file that is needed (step 6) to complete the creation of the ENBD, is located in the EnCase installation directory.
If you are an EnCase version 3 user then the file is located in C:\program files\EnCase.
If you are an EnCase version 4 user then the file is located in C:\program files\EnCase4.

Directions:

  1. Download the appropriate program by clicking here:
    ENBD1006.exe for PCI and SCSI cards
    ENBD_3COM.EXE for 3Com PCMCIA cards
    ENBD_INTEL.EXE for Intel PCMCIA cards [Recommended]
    ENBD_XIRCOM.EXE for Xircom PCMCIA cards [Highly Recommended]
    ENBD_NETGEAR.EXE for NetGear PCMCIA cards [Not Recommended as 32-bit PC-Card network cards will not work with older 16-bit PCMCIA legacy systems]
  2. Save the file to your desktop.
  3. Have a blank, formatted floppy in your floppy drive
  4. Double-click the file and follow the on-screen prompts.
  5. Your EnCase Network Boot Disk will be created.
  6. When it is finished, get the latest EN.EXE file and copy that to the diskette.
DO NOT WRITE-PROTECT THE ENBD. Once created, it must be able to copy files back to the diskette during the boot process, so write-protecting the floppy will cause it to fail.

PCI Cards supported:
(auto and/or manual loading)
  • 3COM 10/100 V.90 Mini-PCI Combo Card
  • 3COM Etherlink 10/100 with 3XP (3C990)
  • 3COM EtherLink III Series
  • 3COM EtherLink XL Series
  • ADMTEK PCI 10/100 Series
  • AMD PCNet Series
  • BROADCOM 440x 10/100
  • BROADCOM NetXtreme Gigabit
  • COMPAQ 10/100 and Gigabit
  • COMPAQ Gigabit 6134/6136 (Intel)
  • COMPAQ NetFlex-3
  • D-LINK DFE-530TX+ 10/100 Series
  • DAVICOM PCI Based Series
  • DIGITAL 2104x/2114x 10/100 Series
  • HP 10/100VGHP Gigabit
  • INTEL PRO Series
  • INTEL PRO/1000 Server Series
  • LITE-ON PNIC-10/100 Series
  • Linksys EG1032/EG1064 v2 Gigabit Adapter
  • Marvell(R) Yukon(R) Ethernet Controller
  • NATIONAL DP83815 10/100 MacPhyter Series
  • NETGEAR FA310TX Adapter
  • REALTEK RTL8029 Series
  • SIS 900/7016 SIS900 10/100 Series
  • SysKonnect SK-9Sxx and SK-9Exx Server Adapters
  • VIA PCI 10/100Mb Series
  • VIA Rhine Family Fast Ethernet
  • VIA Velocity Family Gigabit Ethernet
SCSI Controller Cards supported:
(auto and/or manual loading)
  • AIC-7890/91AIC-78XX/AIC-75XXAMD PCscsiBusLogic MultiMasterIBM ServeRAIDInitio INI-9XXXU/UWInitio INI-A100U2W
  • Symbios 53C8xx
PCMCIA Cards Supported:
(manual loading)
  • 3COM 3CCFE574BT 10/100 LAN PC Card
  • 3COM 3CXFE574BT 10/100 LAN PC Card
  • 3COM 3CCFE575 10/100 Cardbus LAN PC Card
  • INTEL EtherExpress PRO/100 Mobile 16-Bit PC Card
  • INTEL PRO/100 CardBus Adapter
  • NETGEAR FA410TX Fast Ethernet PC Card
  • NETGEAR FA411 PCMCIA Mobile Adapter
  • NETGEAR FA511 CardBus Mobile Adapter
  • XIRCOM CBEM56G-100 CardBus Ethernet 10/100+Modem 56
  • XIRCOM RBEM56G-100 RealPort CardBus Ethernet 10/100+Modem 56
  • XIRCOM R2BEM56G-100 RealPort2 Cardbus Ethernet 10/100+Modem 56
  • XIRCOM R2E-100BTX RealPort2 Ethernet 100
  • XIRCOM RE-100BTX RealPort Ethernet 100
  • XIRCOM CE3B-100BTX CreditCard Ethernet 10/100
  • XIRCOM CE3-10BT CreditCard Ethernet 10

Driver Versions
  • B44.DOS - Broadcom 440x 10/100 Integrated Controller DOS NDIS2 Driver v3.07 (040721)
  • B57.DOS - Broadcom Ethernet DOS NDIS2 Driver v8.28 (051027)
  • DC21X4.DOS - Intel 2104x/2114x 10/100 mbps Ethernet Controller v3.00
  • DLKRTS.DOS - D-Link DFE-530TX+ PCI Adapter Driver
  • DM9PCI.DOS - DAVICOM DM9PCI Series Ethernet Adapter NDIS 2 MAC Driver Version 1.28
  • DP83815.DOS - DP83815 10/100 MacPhyter PCI Adapter DOS NDIS 2.0.1 Driver Version:1.16
  • E1000.DOS - Intel(R) PRO/1000 Network Connection Driver v4.55 090605
  • E100B.DOS - Intel(R) PRO/100 Network Connection Driver v4.57 112304
  • EG1064.DOS - Linksys Gigabit Ethernet NDIS 2.0.1 MAC Module v6.05 (20040220)
  • EL556.DOS - 3Com MiniPCI Network Card DOS NDIS driver v1.0b
  • EL59X.DOS - 3Com DOS NDIS driver for 3C59X Family Adapters v1.2f
  • EL90X.DOS - 3Com Etherlink PCI DOS NDIS driver v5.2.2
  • EL99X.DOS - Etherlink 10/100 PCI NIC with 3XP DOS NDIS driver v1.1
  • FASTNIC.DOS - PCI 10/100 Fast Ethernet Adapter Driver 2002/03/01 v1.08
  • FETND.DOS - VIA Rhine Family Fast Ethernet Adapter Driver v4.35(02-16-2005)
  • GETND2.DOS - VIA Networking Velocity Family Gigabit Ethernet Adapter Driver v1.07 (02-16-2005)
  • L100.DOS - PNIC-10/100 Fast Ethernet Adapter NDIS 2 Mac Driver Version 3.11
  • N100.DOS - HP Ethernet or Fast Ethernet NIC Driver v4.56 032404
  • N1000.DOS - HP Gigabit Adapter/Module v3.62 070204
  • NETFLX3.DOS - Compaq NetFlex-3 DOS NDIS 2.02 driver Driver version 1.70.
  • NGRPCI.DOS - NETGEAR FA310TX Fast Ethernet PCI Adapter NDIS 2 Mac Driver Version 2.73
  • PCIND.DOS - Network driver (V2.2)
  • PCNTND.DOS - AMD PCNet Family Ethernet Adapter NDIS v2.0.1 MAC Driver, Version 3.12
  • SIS900.DOS - SiS 900/7016 PCI Adapters DOS NDIS 2.0.1 Driver Version:1.15
  • SK98ND.DOS - SysKonnect SK-9Sxx and SK-9Exx Server Adapters NDIS 2.0.1 MAC Module v8.00 (20041210)
  • YUKND.DOS - Marvell(R) Yukon(R) Ethernet Controller NDIS 2.0.1 MAC Module v8.14 (20050816)

Further words from Bob Gagnon, creator of the new Network Boot Disk:

This boot disk is intended to be used when the target Server/PC/laptop has an onboard NIC that cannot or should not be disabled.

Please test the diskette on your own system before using it in a 'live' situation. Report any errors or enhancement requests. Report any observations, enhancements or additional drivers that we may use.

The disk holds 26 drivers of the most common (onboard) drivers found on most laptops, desktops and servers representing 190 variants. (It's not exhaustive but a good start.)

If the card does not detect due to a program error you will be brought to a menu listing allowing a manual loading of the proper driver.

If the diskette does not contain the appropriate driver then you will be presented with a PCI scan result of the system with the NIC details. Please make note of it for onsite creation of the proper diskette and future inclusion on this diskette.

The utilities cobbled together on this diskette are entirely freeware and may be distributed to other units.

저작자표시 비영리 변경금지

'security > 포렌식' 카테고리의 다른 글

포렌식 라이브 도구인 Helix  (2) 2009.03.11
mobile forensic 관련 장비와 도구  (4) 2009.02.22
플래시 메모리 포렌식을 위한 Exif Reader  (0) 2009.02.21
Encase 부트 디스크 생성 이미지  (0) 2009.02.16
포렌식을 위한 파일 시그니쳐 모음  (0) 2008.12.29

'security/포렌식' Related Articles

티스토리툴바