Posts

Writeblocked Blog

Resources for learning python for forensics

This is just a small collection of the resources that are available if you are interested in learning python. It is not intended to be a comprehensive list of everything available, just enough to get you started. They are not listed in any particular order although I may have saved the best till last ;-)

•    The official Python tutorialhttp://docs.python.org/2/tutorial/index.html •    http://www.tutorialspoint.com/python/python_quick_guide.htm
•    http://www.codeskulptor.org/#examples-tips6.py

Free Online Classes

•    https://class.coursera.org/interactivepython-2012-001/lecture/index
•    https://developers.google.com/edu/python/utilities
•    Google Python classes http://www.youtube.com/watch?v=tKTZoB2Vjuk
•    http://www.comp.leeds.ac.uk/nde/papers/teachpy3.html
•    http://www.codecademy.com/tracks/python

Books (free online)

How to think like a computer scientist: http://www.greenteapress.com/thinkpython/thinkCSpy/html/index.html
Learn Python the Hard Way: http://learnpythonthehardway.org/
Invent with Python: http://inventwithpython.com/
Hacking secret ciphers with Python (from Invent with Python) http://inventwithpython.com/blog/2013/04/15/hacking-secret-ciphers-with-python-released/

Books (not free but worthwhile getting)

T.J OConnor Violent Python: http://www.amazon.com/Violent-Python-Cookbook-Penetration-Engineers/dp/1597499579/
Justin Seitz Gray Hat Python: Python Programming for Hackers and Reverse Engineers http://www.amazon.com/Gray-Hat-Python-Programming-Engineers/dp/1593271921/
John Zelle Python Programming: An introduction to computer science 2nd ed http://www.amazon.com/Python-Programming-Introduction-Computer-Science/dp/1590282418/

Forums

http://stackoverflow.com/questions/tagged/python

Official Documentation

http://docs.python.org/3/library/
http://docs.python.org/3/reference/
http://docs.python.org/3.3/howto/regex.html

Forensics & Python

Willi’s modules: http://williballenthin.com/
The volatility project: http://code.google.com/p/volatility/
Joachim Metz’s libraries: http://code.google.com/p/libyal/ (not all of these are python, but many have python bindings and some are python!)
Dave Nides blog (author of 4n6time); http://davnads.blogspot.com/
Plaso (backend engine for log2timeline): http://code.google.com/p/plaso/
T.J OConnor’s SANS paper Grow Your Own Forensic Tools: A Taxonomy of Python Libraries Helpful for Forensic Analysis http://www.sans.org/reading_room/whitepapers/incident/grow-forensic-tools-taxonomy-python-libraries-helpful-forensic-analysis_33453

<shameless plug> the course I teach at Champlain College Scripting for Digital Forensics http://www.champlain.edu/computer-forensics/masters-digital-forensics-science/curriculum
and of course the list would not be complete without a cheat sheet