Clearinghouse of Incident Handling Tools (CHIHT)
- Clearinghouse goals
- Creating repository of popular tools used by CSIRTs to collect Incident Data/Evidence, Investigate and Track Incidents
- Easy setting up work procedure for new CSIRT teams
- Questionnaire http://www.terena.nl/task-forces/tf-csirt/tf-csirt-chiht-q.txt
- Categories of tools
1. Incident Data/Evidence Collection (HD and system examining)
2. Investigative tools
3. Tools to support CSIRT procedures
4. Tools for recovering compromised system
5. Pro-active tools
6. Secure Remote Access Tools
- Further work will be conducted by CHIHT WG