* that you can trust the mounted filesystem: in my cases they usually are OS images for Single Board Computers, so their binaries are safe, but if I was looking at the image of a compromised server it would quickly enter "What Could Possibly Go Wrong" area;
* that you can actually run the binaries in the image (and here in my case qemu and binfmt_misc help *a lot*, since I'm often working with different architectures);
* that the image has all of the tools that you need to browse the filesystem: I'd expect a shell to be there, but maybe the image only has a minimal one, and sometimes I've found images that were missing useful tools such as file.
Elena ``of Valhalla'' at 2016-09-25T07:56:53Z
Charles Stanhope likes this.