±Forensic Focus Partners

Become an advertising partner

±Your Account


Forgotten password/username?

Site Members:

New Today: 0 Overall: 30682
New Yesterday: 0 Visitors: 71

±Latest Articles

RSS Feed Widget

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News   Forums   Articles

Page 3

Oxygen Forensics Expands Forensic Capabilities For Applications

Tuesday, June 28, 2016 (10:33:39)
Oxygen Forensics, the worldwide developer and provider of advanced forensic data examination tools for mobile devices, announced today that it can handle all WhatsApp data extraction on any mobile device utilizing any mobile platform (iOS, Android, Windows Phone 8 and Blackberry 10). Oxygen Forensics can also take care of WhatsApp backups that are stored on Android and Blackberry 10 devices.

“According to the latest surveys, WhatsApp is the most popular app in the world and it is very important to Oxygen Forensics to be able to offer our customers the ability to forensically extract messages and other WhatsApp data when necessary,” said Lee Reiber, Oxygen Forensics COO. “The ability to keep all of our products up-to-date on the latest trends in mobile devices and mobile apps is critical not only for us, but for our customers.”

Forensic Focus Forum Round-Up

Thursday, June 23, 2016 (09:45:18)
Welcome to this month’s round-up of recent posts to the Forensic Focus forums.

Forum members help with a winhex problem.

Do you have any suggestions for OSINT training?

How do you go about finding the deleted dates for files on a Windows machine?

Forum members discuss how small files can be embedded in their $MFT entries.

Do you have any suggestions for topics that should be included in a new digital forensics textbook?

How do you mount and reconstruct RAID using Kali?

Do you have experience of telecommunications and cell tower data? Chime in on the forum.

Which devices are compatible with iPhone passcode cracking tools?
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (2603 reads)

Interview With Lee Reiber, COO, Oxygen Forensics

Tuesday, June 21, 2016 (16:53:57)
Lee, you're COO at Oxygen Forensics. Tell us a bit about your work; what does your day-to-day role entail?

As the Chief Operations Officer of Oxygen Forensics Inc., I wear many hats. Primarily, I assist the company with day to day operations out of Alexandria Virginia, which have grown over 300% in the last 8 months. To keep the team focused with this new growth, I assist support and sales staff by continually educating them on current features, mobile forensic trends, and customer needs. Our support and sales staff constantly receive positive feedback from our customers which is a testament to their hard work and dedication to our products and training. Speaking of training. As you know, training has always been my passion and I wanted to build on our already solid product with a new training curriculum, staff, and certified training partners.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (2678 reads)

Belkasoft Evidence Center v.7.5 Offers iTunes Backup Decryption and Many More

Monday, June 20, 2016 (17:15:21)
Belkasoft announces a major update to Belkasoft Evidence Center, the company’s flagship digital forensic solution. The new release brings a revamped user interface, improved search and enhanced analytics. A major addition to Evidence Center 7.5 is the ability to directly access encrypted iTunes backups whether or not the password is known. Unknown passwords can be attacked directly by using the new Decryption module. Other changes include the updated Photo Forgery Detection, EML and MSG email analysis and Google Maps clustering support.

Susteen Webinars For New Physical Explorer And Passcode Breaker

Wednesday, June 15, 2016 (15:11:39)
Susteen has launched our new APEX Physical Explorer and Burner Breaker (the only tool in the world, capable of breaking into locked Burner, throw-away, pre-paid phones). These tools are a must have for any forensic investigator. We'll be holding two webinars where we will introduce you to these two new tools. Please RSVP to either of your choosing by emailing [email protected]

New Tool Showcase Webinars:

Thursday 6/16/16 and Tuesday 6/21/16 at 11:00 am Pacific

MSAB Micro Release Update

Tuesday, June 14, 2016 (07:48:06)
MSAB has just released an update to their range of mobile forensics tools as part of their ongoing development of their Ecosystem of digital forensic products.

XRY v7.0.1 Micro Release
XAMN Spotlight v1.1 Beta

For more details click on the Read More option below...

Cellebrite Launches Actionable Forensics Data In The Field

Friday, June 10, 2016 (06:17:43)
Police work is mostly about solving cases, and this is not a trivial task. Gathering clues and hints is important to achieve the desired outcome. As everyone today has a mobile device with them wherever they go, and these devices are capturing a lot of information (calls, chats, locations, pictures, contacts), leveraging this data for investigation is just common logic.

Researchers conducted on investigation process proved that evidence or clues that are gathered within the first 48 hours are imperative to solving cases, and the statistics shows that when there is no real direction the chances to ever solve the case decreases by 50 percent.

Interview With Noora Al Mutawa, Head of Computer Examination, Dubai Police

Thursday, June 09, 2016 (07:41:25)
Noora, you presented a paper on the challenges of investigating cyberstalking at DFRWS. Tell us a bit about your research and what you found.

The research combined the techniques of Digital Forensics with the strategies of Behavioural Evidence Analysis in investigating cyberstalking cases. It aimed to examine the utility of this approach in terms of understanding the behavioural and motivational dimensions of offending, and the way in which digital evidence can be interpreted. It used this approach on 20 cyberstalking cases investigated by Dubai Police in the last five years and reported on the results of the examinations.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (6673 reads)

Cellebrite Optimizes Forensic Triage Via Rapid and Controlled Extraction

Wednesday, June 08, 2016 (09:37:20)
Cellebrite introduces an enhanced version of UFED InField solution. The new platform agnostic software solution delivers simplified, secure forensics data access and control while streamlining investigative workflows as part of a multi-tier forensic architecture. An intuitive user interface and new selective extraction capabilities make accessing specific live device data quick and easy. These new capabilities accelerate investigations by allowing agencies to increase access by extending the reach of extraction capabilities to investigators, unify investigative teams by connecting lab and field personnel around the evidence collection process, and secure digital evidence that they can defend in court.

SSD and eMMC Forensics 2016 - Part 3

Tuesday, June 07, 2016 (08:38:37)
What Has Changed in 2016 in the Way SSD Drives Self-Destruct Evidence: Demystifying eMMC, M.2, NVMe, and PCI-E.

by Yuri Gubanov & Oleg Afonin
© Belkasoft Research 2016

In the previous part of the article, we talked about eMMC storages and external SSDs. We also mentioned TRIM when talking about trimming behavior of eMMC. We will talk a bit more about TRIM this time and then move on to some real-life cases.

More about TRIM: Checking TRIM Support

There are several levels of TRIM support, all of which are worth checking.

- TRIM support by the SSD drive itself.
- Whether TRIM is enabled and active on a given system/configuration.
- Whether TRIM is correctly implemented by the SSD controller.
- Whether the SSD supports and implements DRAT and DZAT.
- Checking whether a particular SSD drive advertises TRIM support is as easy as reviewing its S.M.A.R.T. output, using the manufacturer’s bundled tool (e.g. SSD Toolbox, Samsung Magician and similar) or using a third-party tool such as CrystalDiskInfo.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (6782 reads)