Research on anti-forensics going well
See post topic. It will be called “Subversive Mode”. Which I find really funny, but anyway. I’m still very carefully reading all of the various licenses of the open source stuff I want to use, since I don’t want any conflicts with the license I’m going to use (probably GNU, but we’ll see). Other then your typical anti-forensics, such as encryption, there will be some other, more advanced measures available in “Subversive Mode.” First off will be something similar to Timestomp, which allows someone to ‘overwrite NTFS “create,” “modify,” “access,” and “change” timestamps’ (Metasploit 2006). There will hopefully be some more active measures that I am not prepared to comment about at this time. Take care everyone!