Published in Hakin9 Extra Magazine.
"Complete description of tools and their uses are out of scope of this article, we’ll be just using them for our
forensics, as you may get a fair idea about them during our process. We shall be using BackTrack(BT) for our analysis. You could pretty much use any distro available as all have mostly common necessary tools. You
could use any normal Linux _avors such as Fedora, RedHat, Ubuntu as well, but the advantage of using distros like BT is that they already have a fair collection of these tools, otherwise you may need to install them."
Can be downloaded here.