New Ghiro website

Posted on March 04, 2015 in Tools • Tagged with ghiro • 1 min read

It seems that the old Ghiro website was too hard for understand for people visiting it.

All we know people stops on websites few seconds, so contents should be delivered in an efficient way, with a simple layout and  short web page.

After one year we read about people that barely were able to understand what Ghiro is, if it is an automated digital forensic tool or a brand new Photoshop clone. We read about people asking where they can download it, how much it costs a license and so on.

So our burlone, Ghiro’s design engineer, put together …


Continue reading

How to clean data in Cuckoo Sandbox

Posted on March 02, 2015 in Tools • Tagged with cuckoo • 1 min read

Starting with Cuckoo Sandbox 1.2, which will be released soon, the old data cleanup tool will be deprecated in favor of a new cleanup method.

The old clean tool, still available, it is the clean.sh script in the tools directory. It is a bash script used to delete the data inside the storage directory (malware samples and reports), logs directory and db directory. The downside is that if you are not using SQLite database but  MySQL or PostgreSQL and if you enable the MongoDB reporting module to store analysis results in MongoDB, clean.sh won’t clean up …


Continue reading

Ghiro 0.2 released

Posted on January 15, 2015 in Tools • Tagged with ghiro, image forensics • 2 min read

It took some time, but here we are, I am really happy to say: we released Ghiro 0.2! We continuously love to improve Ghiro’s feature and our codebase, I hope you like we now release and any kind of feedback will be appreciated. It follows the official release statement.

Ghiro 0.2 has been released!

Ghiro is an automated image forensics tool: sometimes forensic investigators
need to process digital images as evidence. Dealing with tons of images is
pretty easy, Ghiro is designed to scale to support gigs of images.
All tasks are totally automated, you have just …

Continue reading

Ghiro Appliance Building

Posted on November 18, 2014 in Tools • Tagged with appliance, ghiro, image forensics • 2 min read

All started with us thinking about a way to provide users with the simplest and fastest method to test or deploy Ghiro, some users just want to give a try or deploy their infrastructure with no pain in few minutes, and we like challenges.

The game was achieving an plug and play “box” with:

  • Few requirements or no requirements.
  • The ability to use the appliance building technology in a continuous integration system to be used in developer’s daily testing.

After evaluating some technologies, the winner was a conventional “virtual appliance”, because it requires only one virtualization software (i.e …


Continue reading

Silk Road 2 Seized: FBI Report Highlights

Posted on November 08, 2014 in Blog • Tagged with cybercrime, darknet, FBI, Silk Road 2 • 3 min read

It is not a flashing news, yesterday Silk Road 2 has been closed, admin has been arrested and charged, meanwhile in US and EU servers have been seized by various law enforcement agencies.

Today all Silk Road 2 markets show this page.

The operation dubbed “Onymous” was a joint effort of FBI, Eurpol, Eurojust and US Homeland Security, it was publicly advertised on FBI’s twitter profile.

FBI twitter statement on Silk Road 2.

Many good articles are available about operation details and Silk Road admin profile so I don’t want to duplicate them, just have a look to these nice reads:


Continue reading