±Forensic Focus Partners

Become an advertising partner

±Your Account


Username
Password

Forgotten password/username?

Site Members:

New Today: 0 Overall: 35413
New Yesterday: 1 Visitors: 186

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Webinars

Page 3

Find More Evidence That Matters With Magnet AXIOM 3.0

Friday, March 29, 2019 (13:48:50)
We’re excited to release the most powerful and comprehensive version of Magnet AXIOM: Magnet AXIOM 3.0. With AXIOM 3.0, we’re giving you the ability to recover digital evidence from more sources than ever before (including Mac computers and new cloud sources), a powerful and intuitive new Timeline view, and much more.

Using The Content-Length Header Field In Email Forensics

Friday, March 29, 2019 (11:06:55)
by Arman Gungor

As forensic examiners, we often have to analyze emails in isolation without the benefit of server metadata, neighbor messages, or data from other sources such as workstations. When authenticating an email in isolation, every detail counts—we review a long list of data points such as formatting discrepancies within the message body, dates hidden in MIME boundary delimiters, and header fields.

One data point I often see being overlooked is the Content-Length header field. The value this field contains can be leveraged for a simple but powerful check to verify an email’s payload. In this post, I will discuss how we need to preserve emails to be able to utilize the Content-Length header field, how to utilize the data in this field, and a couple of use case scenarios. Let’s start by defining Content-Length.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (9109 reads)

Logicube To Showcase Forensic Product Line At Conference In Madrid, Spain

Friday, March 29, 2019 (10:17:00)
Logicube®, Inc will be participating in an upcoming forensic computing and security conference, to be held April 9th in Madrid, Spain.

The Congreso Informatica Forense y Seguridad 2019 is sponsored jointly by Ondata International, a Logicube authorized partner with more than twenty years of presence in the sector and specializing in forensic computer solutions, computer security and data recovery in conjunction with Red Seguridad, a leading information security publication in Spain.
  • Posted by: lmd07
  • Topic: News
  • Score: 0 / 5
  • (7073 reads)

Interview With Benjamin, Creator Of Metadata Interrogator

Wednesday, March 27, 2019 (11:22:43)
Ben, tell us a bit about yourself and how you got into digital forensics.

Hello! So in terms of background, I come from predominantly a law enforcement background, although I’ve also worked in counter-fraud in the private sector too. I’ve been lucky enough to work in a number of roles in a variety of countries, and I feel that it’s given me a broad insight into our field and the challenges we face.

I started working in proper investigations at that strange time when everything was just starting to go ‘online’ – the move to dynamic web pages and online services. At that time, I had a lot of colleagues who rejected the idea of digital investigations/forensics (“the internet is never going to take off!”), and so due to just having a love of tech, I was always given any case that had a technical/digital element to it – and that was really how I began in digital forensics!

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (5129 reads)

Sneak Peek Of Belkasoft Evidence Center (BEC) v.9.5

Tuesday, March 26, 2019 (16:43:04)
Belkasoft is about to roll out one of the biggest updates of its flagship digital forensic tool in last few years. The company's BEC (Belkasoft Evidence Center), which combines mobile, computer, RAM and cloud forensics in one product, now gets remote forensics and incident investigation features.

More details about the new release are here: https://belkasoft.com/sneak_peek
Sign up for a webinar on BEC 9.5 at https://belkasoft.com/sneak_peek_webinar

Using Distinctive Digital Traces To Evaluate Non-Obvious Links And Repetitions

Tuesday, March 26, 2019 (10:58:57)
Timothy Bollé discusses his research at DFRWS EU 2018.

Timothy: Hello. I am Timothy Bollé. I am currently doing my PhD at the School of Criminal Justice in the University of Lausanne, with Professor Eoghan Casey. And I’m going to discuss the usage of computed similarity of distinctive digital traces to evaluate non-obvious links and repetitions in cyber-investigations.

Just as a quick introduction: The online crimes are repetitive by nature, because there is a lot of victims to reach and because there is a low risk of being identified or apprehended. This repetition can be found as crime series, so it will be the same offender or same group of offenders that will commit multiple crimes. Or, as crime patterns, like hotspots or repeated victimization. To find this repetition, we can use forensic data, like traces, and also, more situational information, like modus operandi description or spatiotemporal information.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (5210 reads)

Digital Forensics News March 2019

Monday, March 25, 2019 (21:09:02)
Amped Software have launched Amped Replay, an enhanced video player for digital forensic investigations.

Magnet Forensics have released AUTOMATE, a new solution that allows digital forensics labs to complete investigations faster.

BlackBag's MacQuisition will now decrypt physical images from Macs with T2 chips.

Nominations are open for the Forensic 4:Cast Awards 2019.

Belkasoft have added live online classes to their training offering.

The hotel booking deadline for DFRWS US is the 15th of May, so make sure you book early to ensure a discounted rate!

MSAB have provided a free online training course to help make the transition from XRY to XAMN easier for investigators.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (5405 reads)

Standardized Corpus For SQLite Database Forensics

Wednesday, March 20, 2019 (15:02:23)
Sven Schmitt discusses his work at DFRWS EU 2018.

Sven: Thank you very much, ladies and gentlemen. Thank you for having me. I will today talk about SQLite database forensics. My name is Sven Schmitt, as Bruce introduced correctly. I am a PhD student with Felix Freiling at the FAU University in Erlangen-Nuremberg, but actually, I only pursue my PhD during night-times and on the weekends, because I mainly work for law enforcement in Germany.

The topic that I’ve brought to Florence this time is ‘A Standardized Corpus for SQLite Database Forensics’. Basically, we will talk about forensic corpora in general, at the beginning. Then, we will introduce the forensic corpus that we created during this work, and I’ll who a little bit details about the tests and the results that we have, because we tested some tools against the corpus, and finally, we derived some points, some requirements that we think are useful for forensic tools in general.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (7119 reads)

Webinar: How To Image Macs With The T2 Chip

Monday, March 18, 2019 (18:49:05)
BlackBag Technologies is proud to announce the first and only solution to produce a decrypted physical image of Apple’s latest Mac systems utilizing the T2 chip.

Current logical imaging solutions, including functionality available in the previous version of BlackBag’s own MacQuisition tool, and competing solutions like Sumuri Recon and EnCase, miss critical file system information that only this new level of physical access will be able to provide.

This vital imaging functionality will be available in the upcoming MacQuisition 2019 R1 release and the output will be seamlessly ingested for analysis by BlackLight 2019 R1.

Forensics Europe Expo London 2019 – Recap

Monday, March 18, 2019 (16:58:32)
by Jade James

This article is a recap of some of the main highlights from the Forensics Europe Expo 2019, which took place in London, UK on the 5th and 6th of March.

The Forensics Europe Expo has now run for seven years and is co-located with the Security & Counter Terror Expo at Olympia London. The expo has truly established itself as a must-visit event, with 2,500 professionals visiting exhibitors, attending seminars and workshops, and of course networking over the course of the two days.

The Expo offers the opportunity for visitors to experience first-hand innovative and cost effective solutions in the field of digital forensics and the more traditional wet forensics, provided by over 60 international suppliers. As well as the opportunity to attend the educational features where you can watch live demonstrations, there are also workshops on topics ranging from drone forensics to digital evidence management. All seminar sessions are CPD accredited.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (847 reads)