System Interrupt Me!

A blog by a Mac user.

Accessing Autopsy V2 on the FOR2014 EC2 Instance

[This is a reposting of my teaching blog post]

Summary

These instructions describe how to access Autopsy running on the FOR2014 Elastic Compute Cloud (EC2) instance used for the FOR classroom exercises. This post describes:
1. How to configure Autopsy on an Amazon Web Services (AWS) EC2 instance to use its default port from a specified remote host public IP address.
2. How to configure Autopsy on an AWS EC2 instance to use ssh Port Forwarding to authenticate the connection and encrypt the traffic between Autopsy and the remote host.

Creating and Accessing the FOR2014 EC2 Instance

[This is a reposting of my teaching blog post]

Summary

These instructions describe how to create an Amazon Web Services (AWS) Elastic Compute Cloud (EC2) instance from a customized Amazon Machine Image (AMI) for the FOR classroom exercises. The instructions also provide information on setting up an ssh session to log into the instance once it is running.

Creating an AMI for Classroom Use

[This is a reposting of my teaching blog post]

Summary

In this post I describe how to create an Amazon Machine Image (AMI) from a customized Amazon Web Services (AWS) Elastic Compute Cloud (EC2) instance. The AMI allows software and data to be prepackaged and distributed to students for use in classroom exercises.

Setting Up Sleuthkit and Autopsy on an AWS EC2 Instance

[This is a reposting of my teaching blog post]

Summary

In this post I outline how to install and use Sleuthkit to conduct computer forensic analysis on an Amazon Web Services (AWS) Elastic Compute Cloud (EC2) instance. The EC2 instance is used in classroom exercises by students using the Linux command line to investigate and analyze forensic evidence.

Using Amazon Web Services in Teaching

[This is a repost of my teaching blog post]

Summary

In this post I describe the decisions points I have been through as I have introduced AWS-based teaching resources into the course I teach. The post gives a high-level overview of the steps I took to identify, create and distribute the AWS-based teaching resources for use in my course.

Using Virtualisation in the Teaching of Computer Forensics

[ This is a reposting of my teaching blog post.]

Summary

This post describes how I use virtual machines to create exercises and assignments for the course I teach. The post also shows how the distribution of the virtual machines to the students allows them to take the skills they have learned in class away with them.

Updating Octopress on OS X 10.9 Mavericks & Restoring Colors & Fonts

Background

I use Octopress to create a number of sites that I host on different domains. I always seem to have problems updating my Octopress site directories to the latest version of Octopress. In particular I keep losing the changes I have made to site colors and fonts. The updating has been further complicated on OS X 10.9 Mavericks as there is a problem when using Safari to preview sites via http://localhost. Combining the work of others with my own, I have finally worked out a way that I can make the Octopress update on Mavericks and restore my color and font changes.

ownCloud on Dreamhost Shared Hosting

Background

I want a way to share bookmarks between user accounts across different systems. While I generally achieve this using iCloud for Safari or Sync for Firefox there are some use cases where this is not convenient nor appropriate. ownCloud provides a bookmark sharing service so I thought I would give it a try. This blog post describes my steps setting up ownCloud on a subdomain hosted on Dreamhost. Note the caveats about using ownCloud on Dreamhost in the Dreamhost wiki.

Creating a Lubuntu Virtual Machine for Computer Forensics Teaching

[ This is a reposting of my teaching blog post.]

Summary

This post describes how to create a Lubuntu-based virtual machine (VM) to be used when teaching of computer forensic analysis and investigation. The post discusses the background to the use of the VM, how the VM is created in VMware Fusion, and how Sleuthkit and other Linux-based utilities are installed. The post finishes with some suggestions on how the VM issued in class can be configured for the classroom teaching computers. This post assumes the reader is familiar with Linux and a virtualization application such as VMware. [While the applications and utilities used are appropriate for a computer forensics investigation, the use of a VM is most probably not an appropriate approach for setting up a production system to undertake computer forensic analysis and investigation because of the overhead the VM adds.]

Octopress Blog Creation, Editing and Synchronization Across OS X and iOS - an Octopress Blog Tool Chain

Introduction

I started this journey looking for a means to create a blog, in an OS X and iOS centric environment, that didn’t involve using Wordpress or having to edit HTML directly (if I could help it.) That lead me to finding Octopress and in order to use Octopress I discovered Markdown and git. In this blog post I describe the processes I have for creating, editing, deploying, managing and controlling content for my Octopress blogs. I have a couple blogs that I use Octopress for, and a number of platforms I want to create content on, so the investment in creating scripts and infrastructure has been worthwhile.