WetStone Technologies US-LATT
August 02, 2010
Free for law enforcement agencies; LiveU3: $695 (4GB) and $795 (32GB)
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Quick and efficient way to collect critical system data.
- Weaknesses: Report file can be a bit tedious to navigate. Available only to law enforcement agencies.
- Verdict: A strong product with great value to the law enforcement community. We’d like to see it in the general forensic community.
WetStone US-LATT provides investigators with the ability to collect critical, live system data. The tool uses a USB U3 smart device with user-defined configurations to capture data on live systems, and it uses Windows Auto Run to collect critical information, such as network data, hardware inventory, complete memory dump, and more.
The US-LATT USB Configurator program quickly and efficiently loads capture specifications onto the USB device. On inserting the USB device into a suspect system, US-LATT works quickly to gather information specified by the US-LATT USB Configurator. A complete collection of a Windows XP machine, which included a complete 2GB memory dump, finished in 10 minutes.
The configuration of the US-LATT USB device is a simple three-step process. The first step is to input investigator information. The second step is a simple screen with more than a dozen options that can be turned on or off through checkboxes. The third step involves loading the configuration to the USB device. After the USB device is configured, it is ready to be inserted into a suspect system. When you insert the configured USB device into a system, US-LATT instantly starts the data collection.
A report on the information collected is created by the US-LATT Import and Report Generation program on the configuration machine. The report is contained in a single HTML file. We think this is the biggest weakness of US-LATT. After each section, there is a link back to the navigation menu, but moving through the report is difficult as the navigation menu is only located at the top of the page. The program also allows investigators to "quick erase" the data collected after import.
The documentation provided is a PDF that contains installation, configuration and usage information. This is fully searchable along with links and bookmarks.
WetStone is currently under contract with the National Institute of Justice to provide US-LATT free to state and local law enforcement. We feel that this is an excellent value to the law enforcement community. We wish that it was available to non-law enforcement organizations.
Sign up to our newsletters
SC Magazine Articles
- APT operation 'Double Tap' exploits serious Windows OLE bug
- 'DoubleDirect' MitM attack affects iOS, Android and OS X users
- Android malware 'NotCompatible' evolves, spawns resilient botnet
- The Internet of Things (IoT) will fail if security has no context
- Regin: nation-state possibly behind the stealthy modular spying malware
- Operators disable firewall features to increase network performance, survey finds
- DDoS attacks cost organizations $40,000 per hour, survey finds
- Waste no time patching Windows Schannel, OLE bugs, experts warn
- Study: 68 percent of healthcare breaches caused by loss or theft of devices, files
- Spin.com redirects to Rig Exploit Kit, infects users with malware, Symantec observes
- Study: 'High priority' issues hamper endpoint security solution implementation
- Researchers identify POS malware targeting ticket machines, electronic kiosks
- Pirated Joomla, WordPress, Drupal themes and plugins contain CryptoPHP backdoor
- DDoS attacks grew in size, threats became more complex, Q3 reports say
- Man gets 18 months in prison for accessing Subway POS devices, loading up gift cards