±Forensic Focus Partners

±Your Account


Nickname
Password


Forgotten password/username?


Membership:
New Today: 0
New Yesterday: 7
Overall: 27350
Visitors: 52

±Follow Forensic Focus

Join our LinkedIn group

Subscribe to news

Subscribe to forums

Subscribe to blog

Subscribe to tweets

Page 3

Search on This Topic: News

[ Go to Home | Select a New Topic ]

A guide to RegRipper and the art of timeline building

Thursday, September 25, 2014 (13:19:26)
I have often heard RegRipper mentioned on forums and websites and how it was supposed to make examining event logs, registry files and other similar files a breeze. RegRipper is developed and maintained by Harlan Carvey, who is the author of several blogs, numerous books and tools, and is also very active in the forensic community in general.

RegRipper is a tool that can be used to quickly extract values of interest from within the registry. It is NOT a registry browser. You do not get the option to browse through the registry. That can quickly overwhelm any analyst.

Instead it extracts only values of potential interest and presents it in a document for easier reading. This does not mean that you will be presented with the smoking gun right off the bat...

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (2140 reads)

Paraben Adds iOS 8.0 Support in Release of DDS

Wednesday, September 24, 2014 (07:20:30)
Paraben is pleased to announce the release of Deployable Device Seizure (DDS) v4.6. All current Device Seizure license holders have access to this new version.

What’s new in DDS v4.6

• Add support for iOS 7.1.x and 8.0 as well as support for the iPad Air
• Added support for Android OS 4.4.2 and below comprehensive logical acquisitions
• Added support of Windows Phone 7.5, 8, and 8.1
• Added deleted message recovery for devices with Symbian OS 7.x-9.x
• New drivers for new generations of phones have been added to the installation
• The acquisition process for devices with Android OS 4.0 and higher has been improved with new methodology
• Added Skype history collection for not-Jailbroken iPhones/iPads/IPod Touches
• Fixed minor problems in working with cases containing Unicode characters
• Improved recovered deleted data parsing for iPhone and Android devices
  • Posted by: paraben
  • Topic: News
  • Score: 0 / 5
  • (1162 reads)

Recovering Evidence from SSD Drives in 2014

Tuesday, September 23, 2014 (16:27:31)
Several years ago, Solid State drives (SSD) introduced a challenge to digital forensic specialists. Forensic acquisition of computers equipped with SSD storage became very different compared to acquisition of traditional hard drives. Instead of straightforward and predictable recovery of evidence, we are in the waters of stochastic forensics with SSD drives, where nothing can be assumed as a given.

With even the most recent publications not going beyond introducing the TRIM command and making a conclusion on SSD self-corrosion, it has been common knowledge – and a common misconception, – that deleted evidence cannot be extracted from TRIM-enabled SSD drives, due to the operation of background garbage collection...

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (2434 reads)

Why Are WhatsApp Artifacts Important to Your Mobile Investigations?

Monday, September 22, 2014 (20:54:21)
Like Kik Messenger, WhatsApp is a cross-platform instant messenger service that has over 600 million users. It was purchased by Facebook in February 2014 and continues to grow in popularity.

Much like other mobile chat applications, WhatsApp contacts, messages, and attachments can be valuable to examiners looking to recover evidence for a variety of different investigation types. Whether you’re analyzing the mobile device of a suspect or a victim, these chat artifacts can contain valuable information to help solve a case...

Read More (Magnet Forensics)

FT Cyber Security Summit 2014 – Recap

Monday, September 22, 2014 (13:28:23)
Forensic Focus attended the FT Cyber Security Summit in London on the 3rd of September. This article is a recap of some of the main highlights of the event.

The Cyber Security Summit brought together speakers and interested parties from law enforcement, international government, computer science and elsewhere to discuss the unique challenges around cybercrime investigation and its implications for international security.

Summit Highlights

One of the strands running through several discussions throughout the day was the issue of encouraging small businesses to take cyber security seriously. Whilst the larger players, particularly in the technology and finance fields, tend to do what they can to ensure that their businesses are secure, this is not always the case with SMEs. And with several of the larger corporations utilising services from these smaller businesses, their security becomes an issue not just for their own businesses but for others as well...

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (754 reads)