NEA

Δείτε με μια ματιά τα νέα από τον χώρο. Η καθημερινή σας εγκληματολογική εφημερίδα

Computer Forensics and E-discovery
October 5th
Note: The following does not represent the opinion of Mark McKinnon. He merely had the good grace to allow me a forum in which to post it after it was respectfully declined (for obvious reasons) by the SANS Institute's Forensic Blog. I wrote it chiefly b…
August 25th
This information was provided to me by Longshot (Just passing this great information along).Decoding the DateCreated and DateLastConnected registry values from the registry keysSOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\Profiles\{GUID} In Vi…
August 7th
I know this whole blog has gotten pretty stale as there have not been any posts in a loooong time. Well I am going to try and remedy that with some good posts in the coming weeks. Well the skype log parser, which is my most downloaded tool, has gone thro…
Forensic Focus
August 11th
Christa: Hello, and welcome to the Forensic Focus podcast. Monthly, we interview experts from the digital forensics and incident response community on a host of topics ranging from technical aspects to career soft skills. I’m your host, Christa Mill…
August 10th
Nuix Enterprise Collection Center empowers ediscovery, digital forensics, and cybersecurity practitioners alike. Investigators are able to make a full forensic image, automated through the use of a simple collection wizard. After providing a case nam…
August 7th
Following a series of Freedom of Information (FOI) requests, the UK’s “The Times” newspaper published a story reporting that the 12,000 digital device backlog faced by UK Police in 2019 remains unchanged in 2020. For many worki…
August 5th
Virtualized online for the first time in its nearly decade-long history, the National Cybercrime Conference (NCCC)  — an annual event hosted by the Massachusetts Attorney General’s Office  — brought together a record 133 speake…
Forensic Video and Image Analysis BLOG
March 27th
First of all, I hope this post finds you and yours in good health. I hope that you have enough to eat and have enough resources to meet your basic needs. I know that many folks have been sent home to work, some have even lost their jobs (some temporarily,…
March 25th
As firms and agencies urge their employees to work from home during the global pandemic, their employees’ confidential phone calls run the risk of being heard by Amazon.com Inc. and Google. Mishcon de Reya LLP, the U.K. law firm that famously advis…
March 11th
When creating case reports, I like to use the terms from our discipline as defined in the various standards documents. Here are some of the most popular terms, and their definitions. Saving these here for quick reference. DEFINITIONS The following defin…
March 10th
In criminal and civil trials around the world, both sides will often retain experts in various forensic science fields to analyze evidence and present their findings to the jury. In a fair process, and employing science, it's hoped that two similarly trai…
Didier Stevens
August 1st
When I had issues with my portapack, it took me some time to remark that these issues only happened with a particular USB cable. The SDR would work fine, and then when I would try to record or playback, the screen would turn dark. You can see this in the …
July 31st
Here is an overview of content I published in July: Blog posts: Update: base64dump.py Version 0.0.12 Tampering With Digitally Signed VBA Projects Quickpost: curl Update XORSearch Version 1.11.4 Update: oledump.py Version 0.0.51 Cracking VBA Project Passwo…
July 29th
This is a bugfix version pecheck-v0_7_11.zip (https) MD5: D3B69575F0A08377D1A08886D34230FD SHA256: 2B59F745377EABDF81118997CA70F5F4DBC1CE927370F02C6E0262869F988FA9
System Forensics
Oops, it looks like you've entered an invalid feed address!
Digital Forensics Magazine News
Linux Sleuthing
May 2nd
Telling time in forensic computing can be complicated. User interfaces hide the complexity, usually displaying time stamps in a human readable format, e.g. 2017-05-02 18:36:23. But the time stamp is usually not recorded in this format. Instead, it is r…
September 29th
Every registered Android mobile device has an associated Google account. Google accounts usually mean Gmail. And, for investigators interested in the Gmail content stored on Androids, that content can be found in the /data/com.google.android.gm/database…
August 25th
I commonly use adb and fastboot to access Android devices.  Ubuntu has packages for those tools making installation easy:$ sudo apt-get install android-tools-adb android-tools-fastbootBut, in recent months, I have encountered instances where the adb …
August 24th
I decided to bite the bullet and try out Windows 10. I wanted to learn the new operating system and determine if I could run specific software/hardware combinations under the new Windows that I had been running in Windows 7, specifically Riffbox. I happ…
Sploited BLOG
January 21st
Welcome to 2013. I was fortunate to have some free time towards the end of last year which allowed me to catch up on some of my side projects such as the Malware Domain List script. Overall I had a great response from the community in regards to this scri…
December 28th
I thought as its the end of the year it would be a good opportunity to briefly break away from the SANS Forensic Artifact posts I've been writing. In my own time I've been playing around with some code that parses a Timeline file for any URL discovered wi…
December 27th
I'm a little late to say this but firstly Happy Christmas to my readers out there. I've been fortunate enough to have a little time off but still find myself working the Christmas / New Year period. I hope some of you have more time off and can catch up o…
December 3rd
I thought I'd get through this next artifact fairly quickly as again I've done some work prior with my Firefox script which has the option available to parse the information out of the Downloads.sqlite database.Please note that the last category should ha…
DFI computer Forensics