The old sethc trick

If the drive is not encrypted, you can try the “sethc.exe” trick: Mount the drive RW and rename the file C:\Windows\System32\sethc.exe to sethc.exe.bak (or something) Rename C:\Windows\System32\cmd.exe to sethc.exe sethc.exe is the exe for sticky keys.  When you boot up and atthe login page, press SHIFT five times fast.  Instead of getting the stucky keys … More The old sethc trick

Installing Autopsy/sleuthkit on Kali Linux

Installing Autopsy 4.8.0 with sleuthkit-java_4.6.2-1_amd64.deb With the package comes the instruction file ‘Running_Linux_OSX.txt.” We basically follow this document with a few exceptions. Step 1 – Add Java 8 PPA The instructions that come with Autopsy 4.8.0 advise you to follow the instructions at …. I replaced the first four steps with the instructions at … More Installing Autopsy/sleuthkit on Kali Linux