{"id":136749,"date":"2010-01-04T14:01:00","date_gmt":"2010-01-04T19:01:00","guid":{"rendered":"tag:blogger.com,1999:blog-1652419620964346731.post-563375933082060424"},"modified":"2010-01-04T14:01:00","modified_gmt":"2010-01-04T19:01:00","slug":"keep-the-feds-out-with-decaf","status":"publish","type":"post","link":"https:\/\/mereja.media\/index\/136749","title":{"rendered":"Keep The Feds Out With Decaf"},"content":{"rendered":"<p>Have you ever wondered what the authorities use to gather data from your computer? One of the big tools they use is call <a href=\"http:\/\/www.microsoft.com\/industry\/government\/solutions\/cofee\/default.aspx\" >COFFEE<\/a>, or <strong><em>Computer Online Forensic Evidence Extractor<\/em><\/strong>. It is a tool that runs on a USB stick that the Feds can plug into your laptop to automatically gathers a whole boat load of data that could potentially land you in the slammer. I mean, I am sure you are all just downloading free Open Source applications, and Creative Commons music from Bit Torrent right? Ha!<\/p>\n<p>According to <a href=\"http:\/\/www.microsoft.com\/industry\/government\/solutions\/cofee\/default.aspx\" >Microsoft\u2019s COFFEE<\/a> page, Coffee allows you the Feds:<\/p>\n<blockquote>\n<p><span style=\"color: rgb(0, 0, 255);\">\u2026 to run more than 150 commands on a live computer system. It also provides reports in a simple format for later interpretation by experts or as supportive evidence for subsequent investigation and prosecution. And the COFEE framework can be tailored to effectively meet the needs of your particular investigation.<\/span><\/p>\n<\/blockquote>\n<p>To combat this tool, a group of Hackers put together their own counter-tool called <a href=\"http:\/\/www.decafme.org\/\" >DECAF<\/a>! I first heard it mentioned on <a href=\"http:\/\/www.hak5.org\/episodes\/episode-619\" >HAK5<\/a>, and when I Googled it I found an article on <a href=\"http:\/\/www.wired.com\/threatlevel\/2009\/12\/decaf-cofee\/\" >Wired<\/a> saying this about DECAF:<\/p>\n<blockquote>\n<p><span style=\"color: rgb(0, 0, 255);\"><a href=\"http:\/\/lh5.ggpht.com\/_jLaEIqL6T8Y\/S0I7Fcv5tII\/AAAAAAAACOg\/EBOGZH1bUQA\/s1600-h\/decaf_logo%5B10%5D.png\"><img loading=\"lazy\" decoding=\"async\" style=\"border: 0px none ; display: inline; margin-left: 0px; margin-right: 0px;\" title=\"decaf logo\" alt=\"decaf logo\" src=\"http:\/\/lh5.ggpht.com\/_jLaEIqL6T8Y\/S0I7FtnAlqI\/AAAAAAAACOk\/Uuwu2nLf4Rs\/decaf_logo_thumb%5B6%5D.png?imgmax=800\" width=\"92\" align=\"right\" border=\"0\" height=\"122\" \/><\/a> [Decaf] deletes temporary files or processes associated with COFEE, erases all COFEE logs, disables USB drives, and contaminates or spoofs a variety of MAC addresses to muddy forensic tracks.<\/span><\/p>\n<\/blockquote>\n<p>I fairly certain that using this tool to hinder an investigation is probably illegal. You know, obstruction of justice and all that jazz, but if your privacy is a concern to you, and you don\u2019t want Uncle Sam\u2019s minions digging through your laundry, then perhaps <a href=\"http:\/\/www.decafme.org\/\" >DECAF<\/a> is right for you!<\/p>\n<p>What is your favorite anti-authority program? Know of other programs like COFFEE and DECAF? Hit us up in the comments!<\/p>\n<div style=\"margin: 0px; padding: 0px; display: inline; float: none;\" id=\"scid:0767317B-992E-4b12-91E0-4F059A8CECA8:1b0cb5e1-cdf2-4ccc-a05c-1e4cd0b6130b\" class=\"wlWriterEditableSmartContent\">Technorati Tags: <a href=\"http:\/\/technorati.com\/tags\/decaf\" rel=\"tag\">decaf<\/a>,<a href=\"http:\/\/technorati.com\/tags\/microsoft\" rel=\"tag\">microsoft<\/a>,<a href=\"http:\/\/technorati.com\/tags\/coffee\" rel=\"tag\">coffee<\/a>,<a href=\"http:\/\/technorati.com\/tags\/computer+forensics\" rel=\"tag\">computer forensics<\/a><\/div>\n<div class=\"blogger-post-footer\"><Br \/><center><a href=\"http:\/\/www.anrdoezrs.net\/click-3773910-10438541?cm_mmc=CJ-_-2769020-_-3773910-_-Home_468x60-Anim_8-24-2006\" ><br \/>\n<img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/www.ftjcfx.com\/image-3773910-10438541\" width=\"468\" height=\"60\" alt=\"Great Deals @ Geeks.com!\" border=\"0\"\/><\/a><\/center><img width='1' height='1' src='https:\/\/blogger.googleusercontent.com\/tracker\/1652419620964346731-563375933082060424?l=www.bauer-power.net' alt='' \/><\/div>\n<div class=\"feedflare\">\n<a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:yIl2AUoC8zA\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?d=yIl2AUoC8zA\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:dnMXMwOfBR0\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?d=dnMXMwOfBR0\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:V_sGLiPBpWU\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?i=NWvbXL4hzE8:mdBC5VFInPg:V_sGLiPBpWU\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:gIN9vFwOqvQ\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?i=NWvbXL4hzE8:mdBC5VFInPg:gIN9vFwOqvQ\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:YwkR-u9nhCs\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?d=YwkR-u9nhCs\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:F7zBnMyn0Lo\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?i=NWvbXL4hzE8:mdBC5VFInPg:F7zBnMyn0Lo\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:wF9xT3WuBAs\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?i=NWvbXL4hzE8:mdBC5VFInPg:wF9xT3WuBAs\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:jTJX5pvEcCQ\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?i=NWvbXL4hzE8:mdBC5VFInPg:jTJX5pvEcCQ\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:TzevzKxY174\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?d=TzevzKxY174\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:qj6IDK7rITs\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?d=qj6IDK7rITs\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:7Q72WNTAKBA\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?d=7Q72WNTAKBA\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:nHK9nIK91uw\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?i=NWvbXL4hzE8:mdBC5VFInPg:nHK9nIK91uw\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?a=NWvbXL4hzE8:mdBC5VFInPg:tdI4wLSbWXI\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/Bauer-power?i=NWvbXL4hzE8:mdBC5VFInPg:tdI4wLSbWXI\" border=\"0\"><\/img><\/a>\n<\/div>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~r\/Bauer-power\/~4\/NWvbXL4hzE8\" height=\"1\" width=\"1\"\/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Have you ever wondered what the authorities use to gather data from your computer? One of the big tools they use is call COFFEE, or Computer Online Forensic Evidence Extractor. It is a tool that runs on a USB stick that the Feds can plug into your laptop to automatically gathers a whole boat load [&hellip;]<\/p>\n","protected":false},"author":1521,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7],"tags":[],"class_list":["post-136749","post","type-post","status-publish","format-standard","hentry","category-news"],"_links":{"self":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/posts\/136749","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/users\/1521"}],"replies":[{"embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/comments?post=136749"}],"version-history":[{"count":0,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/posts\/136749\/revisions"}],"wp:attachment":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/media?parent=136749"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/categories?post=136749"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/tags?post=136749"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}