skip navigation

Content:: The Slueth Kit

The Slueth Kit
OS: Debian Wheezy (7.x)
Last Modified: 2013-08-28
The Sleuth Kit and Autopsy are a command line a web based GUI suite of forensic tools.

Table of Contents
Quick Version
  1. Install The Slueth Kit and Autopsy # apt-get install sleuthkit autopsy
  2. Start web interface $ autopsy -d /home/<user>/Evidence_Locker/
  3. Go to default url
The Slueth Kit TSK for debian $ apt-cache search sleuthkit
autopsy - graphical interface to SleuthKit
sleuthkit - collection of tools for forensics analysis on volume and file system data

# apt-get install sleuthkit
# apt-get install autopsy
Setting up the evidence locker
Create a storage location for "evidence" $ mkdir Evidence_Locker
Running the Autopsy web interface
Start autopsy via the command line by running $ autopsy -d /home/<user>/Evidence_Locker/
After starting the Autopsy web server you can log into by going to