COFEE is a small and very basic GUI with two tabs.

Basically you tell it where your thumb drive is, and hit “Generate” and it will put all these files in the drive, you then run your nifty thumb drive and it executes all the commands for you with the defaults they have chosen.

Want more power? go to settings and see exactly what the parameters passed to each .exe are or throw in a new utility with your own parameters.

Soo, here’s the list, download them, make yourself 1 large .bat file and you have a cup of cofee!

 

arp.exe     Microsoft OS Native    

at.exe      Microsoft OS Native    

auditpol.exe      Microsoft Resource Kit 

autorunsc.exe     Microsoft Sysinternals 

cipher.exe  Microsoft OS Native    

cmd.exe     Microsoft OS Native    

*cmdline.exe      Diamond CS

http://www.diamondcs.com.au/index.php?page=products

dd.exe      GM Garner Forensic Utilities [also download

getopt.dll] http://users.erols.com/gmgarner/forensics/

driverquery.exe   Microsoft OS Native    

drivers.exe Microsoft Resource Kit 

dumpel.exe  Microsoft Resource Kit 

*dumpsec.exe      Somarsoft   http://www.somarsoft.com

fport.exe   Foundstone  http://www.foundstone.com

fsinfo.exe  Microsoft Resource Kit 

getmac.exe  Microsoft OS Native    

getopt.dll  GM Garner Forensic Utilities [also download

dd.exe]     http://users.erols.com/gmgarner/forensics/

global.exe  Microsoft Resource Kit 

handle.exe  Microsoft Sysinternals 

hostname.exe      Microsoft OS Native    

ifmember.exe      Microsoft Resource Kit 

ipconfig.exe      Microsoft OS Native    

ipxroute.exe      Microsoft OS Native    

LastLogon.exe          

listdlls.exe      Microsoft Sysinternals 

local.exe   Microsoft Resource Kit 

mem.exe     Microsoft OS Native    

*minicap.exe      DonationCoder

http://www.donationcoder.com/Software/Mouser/MiniCap/index.html

msinfo32.exe      Microsoft OS Native    

nbtstat.exe Microsoft OS Native    

net.exe     Microsoft OS Native    

netdom.exe  Microsoft OS Native    

netstat.exe Microsoft OS Native    

netusers.exe      Optimum X   http://www.optimumx.com/download/

ntlast.exe  Foundstone  http://www.foundstone.com

openfiles.exe     Microsoft OS Native    

*openports.exe    Diamond CS

http://www.diamondcs.com.au/index.php?page=products

pclip.exe   UnxUtils    http://unxutils.sourceforge.net

psfile.exe  Microsoft Sysinternals 

pslist.exe  Microsoft Sysinternals 

psloggedon.exe    Microsoft Sysinternals 

psloglist.exe     Microsoft Sysinternals 

psservice.exe     Microsoft Sysinternals 

pstat.exe   Microsoft Resource Kit 

psuptime.exe      Microsoft Sysinternals 

quser.exe   Microsoft OS Native    

reg.exe     Microsoft OS Native    

rifiuti.exe Foundstone  http://www.foundstone.com

route.exe   Microsoft OS Native    

sc.exe      Microsoft Resource Kit 

sclist.exe  Microsoft Resource Kit 

*sed.exe    Cygwin [Download Cygwin.exe then select sed.exe, required

for

execution of streams.exe and efsinfo.exe] http://www.cygwin.com

showgrps.exe      Microsoft Resource Kit 

smbios.exe  Microsoft Resource Kit 

srvcheck.exe      Microsoft Resource Kit       

srvinfo.exe Microsoft Resource Kit 

systeminfo.exe    Microsoft OS Native    

tasklist.exe      Microsoft OS Native    

tcpvcon.exe Microsoft Sysinternals 

uptime.exe  Microsoft OS Native    

whoami.exe  Microsoft Resource Kit

* Asterik means highly recommended files to download for optimum performance

Thanks to Edgar Zaya for the list

This entry was posted on Saturday, May 10th, 2008 at 5:38 am and is filed under Reviews, Computer forensics. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.