Orion Investigations have released LiveGator, an incident response tool that automates the collection of data from live computers.
LiveGator can be quickly configured at a push of a button. No installation is required and can be run direct from a USB drive. To ensure integrity of the data, all tools are hashed and verified prior to running and a log file is maintained throughout the extraction process. A full html report is produced automatically on completion of the extraction.
LiveGator will collect the following information:
• Memory and process acquisitions
• Network Information
• Processes and services
• System information
• Log files
LiveGator uses the following tools to extract the data: