±Your Account
Membership:
New Today: 0
New Yesterday: 0
Overall: 24209
Visitors: 25±Latest Webinar
±Latest Jobs
±Blog
· Interview with Robert Bond, Product Marketing Manager, Guidance Software
· Internet Evidence Finder (IEF) review
· Interview with Eddie Sheehy, CEO, Nuix
· Interview with Jonathan Krause, Managing Director, First Response
· Webinar (online now): Pitfalls of Interpreting Forensic Artifacts in the Windows Registry
· Guidance Software Releases EnCase® Forensic v7.05
· Webinar: Pitfalls of Interpreting Forensic Artifacts in the Windows Registry
· Interview with Lindy Sheppard, F3 (First Forensic Forum) Secretary
· Interview with Philip Anderson, Senior Lecturer at Northumbria University
· Windows 8 Forensics webinar - alternative URL
· Internet Evidence Finder (IEF) review
· Interview with Eddie Sheehy, CEO, Nuix
· Interview with Jonathan Krause, Managing Director, First Response
· Webinar (online now): Pitfalls of Interpreting Forensic Artifacts in the Windows Registry
· Guidance Software Releases EnCase® Forensic v7.05
· Webinar: Pitfalls of Interpreting Forensic Artifacts in the Windows Registry
· Interview with Lindy Sheppard, F3 (First Forensic Forum) Secretary
· Interview with Philip Anderson, Senior Lecturer at Northumbria University
· Windows 8 Forensics webinar - alternative URL
Back to top
Skip to content
Skip to menu
Computer Forensics Feeds
Back to top Back to main Skip to menu|
Computer Forensics Feeds
A selection of recent posts from other computer forensics blogs and websites. Forensic Focus members may create their own blog entries here. |
Happy as a Monkey
· Post-conviction Client Satisfaction Form
· Ancient Illuminated Order of Forensicators
· Alternative Forensic Awards
· High-Tech Crime Trading Cards
· Animalising the HTCU
· The MCCF Good Practice Guide for Computer-Based Electronic Evidence
· Bin Laden hard drive – prelim. forensic report
· Free headlines to help lazy journos, shocker!
· HTCU Simulator
· 2010 – State of the Monkey
read more...
· Ancient Illuminated Order of Forensicators
· Alternative Forensic Awards
· High-Tech Crime Trading Cards
· Animalising the HTCU
· The MCCF Good Practice Guide for Computer-Based Electronic Evidence
· Bin Laden hard drive – prelim. forensic report
· Free headlines to help lazy journos, shocker!
· HTCU Simulator
· 2010 – State of the Monkey
read more...
Mobile Telephone Evidence
Windows Incident Response
Forensics from the sausage factory
· Location Data within JPGs
· Windows Live Messenger – MessengerCache folder
· Old Servers never die – unfortunately
· Adobe Bridge CS3 and some MySQL stuff
· Missing in action
· SQLite overflow pages and other loose ends...
· An analysis of the record structure within SQLite databases
· SQLite Pointer Maps pages
· Carving SQLite databases from unallocated clusters
· Reporting and Exporting Emails from Encase
· Windows Live Messenger – MessengerCache folder
· Old Servers never die – unfortunately
· Adobe Bridge CS3 and some MySQL stuff
· Missing in action
· SQLite overflow pages and other loose ends...
· An analysis of the record structure within SQLite databases
· SQLite Pointer Maps pages
· Carving SQLite databases from unallocated clusters
· Reporting and Exporting Emails from Encase
Computer Forensics, Malware
· EnCase EnScript to automate Internet Evidence Finder (IEF) for EnCase v6 & v7
· EnCase EnScript to send data directly to SPLUNK for IR, Investigations & Timelines
· Crafting good keywords in EnCase and using conditions to refine results
· File Entropy explained
· EnCase EnScript to calculate entropy of selected file(s)
· EnScript to parse setupapi.dev.log
· EnCase EnScript - Categorize files by specified file extensions, bookmark and provide count
· Utility to verify wipe/erase of hard drive
· EnCase EnScript to verify LEF collection
· EnCase EnScript to list and resolve all the file permissions on a drive
· EnCase EnScript to send data directly to SPLUNK for IR, Investigations & Timelines
· Crafting good keywords in EnCase and using conditions to refine results
· File Entropy explained
· EnCase EnScript to calculate entropy of selected file(s)
· EnScript to parse setupapi.dev.log
· EnCase EnScript - Categorize files by specified file extensions, bookmark and provide count
· Utility to verify wipe/erase of hard drive
· EnCase EnScript to verify LEF collection
· EnCase EnScript to list and resolve all the file permissions on a drive
Ex Forensis
· The Perils of Using the Local Computer Shop for Computer Forensics
· Casey Anthony - Detectives Miss Google Searches
· A Brief History of Time : Forensic Time
· Experts and Expertise
· A Quality Expert Makes a Huge Difference
· Employment Opportunity with Guardian Digital Forensics
· New Spam Campaign - Spoofing Intuit
· It's Tax Time and the Scams Begin
· Cloud Data and E-Discovery - Pay your bill or risk sanctions.
· Casey Anthony - More on the chloroform evidence
read more...
· Casey Anthony - Detectives Miss Google Searches
· A Brief History of Time : Forensic Time
· Experts and Expertise
· A Quality Expert Makes a Huge Difference
· Employment Opportunity with Guardian Digital Forensics
· New Spam Campaign - Spoofing Intuit
· It's Tax Time and the Scams Begin
· Cloud Data and E-Discovery - Pay your bill or risk sanctions.
· Casey Anthony - More on the chloroform evidence
read more...
Forensic 4cast
SANS Computer Forensics
· "Digital Forensics Case Leads: First ICS HoneyPot, IEF EnScripts, Android Forensics, Unit 61398 - The APT1 guys, CALEA Act and more... "
· "SANS EU #DFIR Summit in Prague - Call for Speakers - Now Open"
· "Tools for Examining XOR Obfuscation for Malware Analysis"
· "Case Leads: Zero Day Trading, Decrypting iPhones, Calculating AppID's for Jumplists and more."
· "Automating Static Malware Analysis With MASTIFF"
read more...
· "SANS EU #DFIR Summit in Prague - Call for Speakers - Now Open"
· "Tools for Examining XOR Obfuscation for Malware Analysis"
· "Case Leads: Zero Day Trading, Decrypting iPhones, Calculating AppID's for Jumplists and more."
· "Automating Static Malware Analysis With MASTIFF"
read more...