New tool deCOFEEnates Windows systems

[nsane.forums]

Decaf launches countermeasures when someone tries to investigate a PC using 'COFEE', a forensic tool collection from Microsoft

View: Original Article

[aben4rent]

a must have for those who are living in countries that are anti p2p

[i-con]

Man, hackers are even better than corporate coders. Just love the good news.

[HX1]

Just a heads-up for you guys.. This program has been updated three times since this posting.. Once by the original author, then by another guy who re-enabled it.. and now it back up and new..So technically you need two official versions.. Depending on how your going to use it..

All the details at the site...

Homepage:

http://decafme.org

Forum:

http://cruxt.org

[LoKz]

Sooo what does it do again lol

[Toshiro]

Sooo what does it do again lol

Decaf (Detect and Eliminate Computer Assisted Forensics) attempts to detect when a USB drive containing COFEE is inserted and launch countermeasures. It's reportedly able to disable the USB flash drive and rapidly stop pre-defined processes. In the event of an 'attack', Decaf can, if required, also delete log files, browsing history, cookies and the browser cache and even whole directories. It's also able to automatically delete torrent clients such as Azureus when COFEE activity is detected on a system. Additionally, the tool is reported to be able to spoof the computer's MAC address.

Reading isn't hard :lol:

[HX1]

Yes.. true..The SoldierX version or version 1 can do all of that.. Now version 2 has some changes.. 'Its not so destructive' as stated at the site... It can run an executable if and or when detected..Kill the USB or the Device it is run from.

There is still the option to DBAN certain areas by running an executable.. and I read in the forums that there were some thoughts about another project that may be in the plans that looked promising as well.. Some good info.. fresh forum though..