AccessData AccessData

Forensic Toolkit
Enterprise
eDiscovery & Litigation Support
SilentRunner
Lab
Classified Spillage Solution
Mobile Phone Examiner
Decryption Tools
Live Response & Helix


Download Helix 3 for FREE >
No technical support is provided for the free version of Helix.

 

Follow AccessData
LinkedIn RSS Twitter

Helix & Live Response

Simple Security Solutions

Helix3 and Live Response are used around the world by law enforcement and government agencies. Now AccessData offers Helix products and Live Response, as well as technical support for these technologies. Additionally, all e-fense customers can now join our message board to share information and get support. All product discussions are open to all members of our discussion forum.
Join now! >

Live Response

Reveal the Truth: Volatile Data Collection from a USB Key
Live Response is the only USB key that enables first responders, investigators and IT security professionals to collect the live volatile data, which will be lost once the computer system is shut down. Acquire ALL volatile and requested data from a live system — in just minutes!  Simply insert the USB key, and instruct the system to gather only the data you desire from a menu of options.  Live Response will then collect and store the data directly onto the device within minutes. When you are finished, you can simply eject the USB key and walk away.

Data collected by Live Response®:

  • Physical memory
  • Network connections, open TCP or UDP ports, NetBIOS
  • Currently logged on user / user accounts
  • Current executing processes and services
  • Scheduled jobs
  • Windows registry
  • Browser auto-completion data, passwords
  • Screen capture
  • Chat logs
  • Windows SAM files / NTUser.dat files
  • System logs
  • Installed applications and drives
  • Environment variables
  • Internet history

With Live Response’s easy-to-use graphical interface, investigators around the world can conduct computer forensics investigations quickly and easily.

  • Acquire data including hidden or deleted items
  • Store and transfer data easily
  • Analyze data collected
  • Review data collected
  • Compile report with results

Helix 3 Pro

Helix3 Pro is a unique tool!  Get the only tool with a Live and Bootable side for your investigation needs.

  • A multi-platform LIVE side for three environments; Mac OS X, Windows and Linux with one simple to use interface
    • Make forensic images of all internal devices
    • Make forensic image of physical memory (32 and 64 bit)
    • Determine if disk level encrytion is turned on
  • A bootable forensically sound environment to boot any x86 system
    • Make forensic images of all devices
    • Search filesystems for specific file types (i.e. Graphic files, Document files, etc.
  • Several open source forensic applications to assist with data analysis including cell phone analysis
 

Sleuthkit
LinEn
Libewf + mount_ewf
Carvfs
cryptsetup
Truecrypt
lvm2
Scalpel
Foremost

LibPff
Volatility plus many plugins
moto4lin
gmobilemedia
gammu
gnokii
frag_find
pythonraw
ptfinder
Brochures
Helix3 Pro >
Live Response >
AccessData Product Webinars