Tactical Forensics Platform
![Image](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiCSTAwxYsKTMN3sc-Bpe8D6ymg2leI9sKtTKU3kNe5T5iQ6GMcKEr-C-9aBjH-mmVe6YTxeJXYqwn7EsfHuzSiZVK7TkxRhudE1EuPUllpwKhhrLd-53TXgocjmAEHhvPfOTi9/s400/screenless_nd_sm.jpg)
Earlier I wrote about my proposed Tactical Network Security Monitoring Platform . Today I finally sat down and installed the operating systems I need on this system to create a portable tactical forensics and investigation platform. I did not want to use my main work laptop for this sort of work because I do not administer it. I needed my forensics platform to be separate from the corporate domain and totally under my control. I only feel comfortable attesting to the configuration of a system doing forensics if I built it from the ground up and I am the sole administrator. For operating systems, I had three needs. I wanted Windows XP because the majority of commercial forensics software runs on Windows. I wanted Ubuntu Hardy Heron so I could have access to Linux forensics software and VMware Server. (Windows is also a possible VMware Server candidate, but I might install a copy of VMware Workstation on the Windows side.) I wanted FreeBSD 7.0 in case I needed to do packet captur