Wednesday, May 15, 2013 (17:35:36)
Researchers at The University of Texas at San Antonio (UTSA) College of Business have received two grants totaling $1 million to help companies better detect insider threats and enhance computer security. UTSA researchers were awarded $797,000 in funding from the Naval Postgraduate School, the U.S. Navy's national security research university, as part of a three-year $1.4 million contract with the U.S. Department of Homeland Security Science and Technology Directorate Cyber Security Division. UTSA researchers will be responsible for developing an algorithm that detects hostile insiders using digital forensics - the algorithm will help companies detect data exfiltration, employee misconduct, and other unauthorized activity that jeopardizes the organization.
±Your Account
Membership:
New Today: 2
New Yesterday: 2
Overall: 24170
Visitors: 48±Latest Webinar
±Follow Us
±Latest Jobs
±Latest Articles
· Geo-tagging & Photo Tracking On iOS
· KS – an open source bash script for indexing data
· Mobile Device Geotags & Armed Forces
· Categorization of embedded system forensic collection methodologies
· Interpretation of NTFS Timestamps
· What are ‘gdocs’? Google Drive Data – part 2
· What are ‘gdocs’? Google Drive Data
· Bad Sector Recovery
· Forensic Artifact: Malware Analysis in Windows 8
· Windows 8: Important Considerations for Computer Forensics and Electronic Discovery
· KS – an open source bash script for indexing data
· Mobile Device Geotags & Armed Forces
· Categorization of embedded system forensic collection methodologies
· Interpretation of NTFS Timestamps
· What are ‘gdocs’? Google Drive Data – part 2
· What are ‘gdocs’? Google Drive Data
· Bad Sector Recovery
· Forensic Artifact: Malware Analysis in Windows 8
· Windows 8: Important Considerations for Computer Forensics and Electronic Discovery
Back to top
Skip to content
Skip to menu
Back to top
Back to main
Skip to menu
Of course during this time numerous enhancements were also made to the core functionality of Reconnoitre, i.e. parsing Volume Shadow Copies, to further streamline and enhance the user experience. These enhancements included the ability to hash just graphics files, comprehensive tooltips to accelerate the learning process and additional “copy to clipboard” functions making it easier to get data from grids (and pictures) out of Reconnoitre for those who don’t want to use our report...
Apple devices store much more information than you would ever imagine. It is surprisingly accurate as well, with timestamps to the millisecond and even location data that is frighteningly accurate. The main challenge for the user however, is correctly extracting, preserving and analyzing this information...
Read More...
The re-worked aggregate view enables forensic experts to instantly view matching and similar contacts discovered across several devices. The ability to view aggregated contacts can help investigators collect additional information about a contact that may be available across the range of devices being analyzed.
Read More...
Latest Forum Posts
| Topics | Replies | Author | Views | Last Post | |
|---|---|---|---|---|---|
 |
 The X-Ways Forensics Practi... |
23 | bshavers | 6907 | Sun May 19, 2013 8:37 pm bshavers |
|
Time Stamp Mystery |
11 | writerkeith | 686 | Sun May 19, 2013 8:18 pm writerkeith |
|
IOS physical acquisition |
4 | Lucio | 237 | Sun May 19, 2013 7:51 pm Lucio |
|
NAND flash disk ECC |
28 | ka8712 | 6808 | Sun May 19, 2013 7:17 pm jaclaz |
|
Mac Serial Number from DMG ... |
3 | hirokun59 | 313 | Sun May 19, 2013 7:13 pm Jonathan |
Reconnoitre - Link files, geolocation and C4P
Monday, May 13, 2013 (12:51:15)
Since Reconnoitre was released in January this year there have been a number of enhancements driven by requests from our users including link file support, EXIF and geolocation support, features to query C4P hash servers and advanced reporting. Of course during this time numerous enhancements were also made to the core functionality of Reconnoitre, i.e. parsing Volume Shadow Copies, to further streamline and enhance the user experience. These enhancements included the ability to hash just graphics files, comprehensive tooltips to accelerate the learning process and additional “copy to clipboard” functions making it easier to get data from grids (and pictures) out of Reconnoitre for those who don’t want to use our report...
- Posted by: PaulSanderson
- Topic: News
- Score:
- (802 reads)
Geo-tagging and Photo Tracking on iOS
Wednesday, May 08, 2013 (15:09:51)
As you may already know, Apple has always been criticized for using their extremely popular devices to track users and use this information to expand their own databases. This tutorial assumes that you have already jailbroken your device and you know how to navigate your way through iOS menus, if you don’t then check out our other articles that cover just that. In this small and insightful tutorial, you’ll see just how easy it is to extract photos from an Apple device and use the EXIF data to view the location of where the photo was taken along with other cool details.Apple devices store much more information than you would ever imagine. It is surprisingly accurate as well, with timestamps to the millisecond and even location data that is frighteningly accurate. The main challenge for the user however, is correctly extracting, preserving and analyzing this information...
Read More...
- Posted by: jamie
- Topic: Announcements
- Score:
- (798 reads)
Oxygen Forensic Suite 2013 Adds Aggregate View for Mobile Contacts and More
Tuesday, May 07, 2013 (14:53:56)
Oxygen Software has updated its flagship mobile forensic product, Oxygen Forensic Suite 2013, adding the ability to view and analyze aggregated contact information through multiple acquired devices. The new release also includes an enhanced search algorithm, allowing investigators to execute complex searches in background without slowing down overall performance.The re-worked aggregate view enables forensic experts to instantly view matching and similar contacts discovered across several devices. The ability to view aggregated contacts can help investigators collect additional information about a contact that may be available across the range of devices being analyzed.
- Posted by: OxygenSoftware
- Topic: News
- Score:
- (823 reads)
KS – an open source bash script for indexing data
Tuesday, April 30, 2013 (11:05:03)
This is a keywords searching tool working on the allocated, unallocated data and the slackspace, using an indexer software and a database storage. Often during a computer forensics analysis we need to have all the keywords indexed into a database for making many searches on it in a fast way. We could use strings and grep, for searching the keywords, but we cannot have a database and an engine, then we can’t search them inside many formats, like compressed files, including the ODT, DOCX, XLSX, etc. So, I tried to solve this problem, first of all we need to extract, what I call “spaces”...Read More...
- Posted by: jamie
- Topic: Announcements
- Score:
- (1153 reads)