Greetings,
You can have everything in life you want, if you will just help other people get what they want - Zig Ziglar
I have repeated my story so many times that I beginning to sound like a broken record. Anyway, here it is gain. Being a newbie to CF, I am trying to get as much experience as I can get before I start on my own. I have some training and certifications under my belt with more on the way. Here is the million dollar question… Are there any gracious hearts out there who would be willing to allow me to spend a day with them in their lab? For the sake of experience, allow me to look at their setup, talk shop, rub elbows, etc. I am not trying to steal anyone trade secrets, just trying to get as much exposure as I can get and create a list of my own best practices when I set my lab.
I would be willing to provide you my resume if you choose to pre-screen. I live in Indianapolis, Indiana and I am willing to travel 5 hours out in any direction.
Thanks,
This has been talked about many many times before.
Hard to let someone in their lab when most cases have some sort of a confidentiality agreement in place and bringing you in would violate that.
Also stating you aren't trying to steal any trade secrets is noble, however once in someone's lab you will in fact see their forms, methods, storage, software, etc. and indeed from one day in their lab have the fruit of possibly years of their labor.
Are there any gracious hearts out there who would be willing to allow me to spend a day with them in their lab? For the sake of experience, allow me to look at their setup, talk shop, rub elbows, etc…
What is it that you're really looking for?
I ask only because there are already a number of ways to "look over someone's shoulder", as it were. For example, there are several challenges posted out there (Lance M's site, NIST, HoneyNet, etc.), and many of these challenges have solutions posted. Not only does Lance's first practical have solutions posted, but I posted an example report (using that practical as the basis) for that scenario to the Win4n6 Yahoo group Files section.
This is a way that you can see what tools and methodologies others are using, but you can do so on your own time and at your own pace, building up some experience. As far as rubbing elbows, there's this site, to start…and I just talked to someone last week, discussing how, if they can't find a local meet-up group to join, that they might consider starting one of their own.
I bring these up because I think the previous respondent hit the nail on the head…for LE and gov't labs, there's no indication that you're cleared, and for corporate or consultant labs, they may not want to expose what could amount to proprietary information. That's just something to consider…
Forensicakb,
keydet89
Thank you responding. You are absolutely correct; my intentions were to learn about processes and methodologies, architecture other professionals have in place. I guess I did not consider them to be secrets because they too learned it from someone. When I said secrets, I meant their current customers or perhaps some proprietary script or tool they have to do certain things. I am looking for more a bird’s eye view of everything and not nitty-gritty details or data. The idea was to learn how others are doing what challenges they went through, acceptable practices and come up with my own best practices.
Although I do not work in a computer forensics field, I have been in law enforcement for 22 years plus 10 years of DOD work. We have a medium size department and do have a cyber crime unit. I am more towards the end of my career and interested in how things are being done in private sector.
I am a regular reader of this site and as for a local group; I will definitely try to get one started.
I will also look into challenges keydet89 mentioned.
Rizwan,
A possible solution to your problem is to sign on with a company and see how you like it, this way you gain access to what you are looking for and can see if you think you can make it on your own.
There may be a non compete contract or maybe not, but it's worth a try.
If signing on full time is not in the cards, you could get around the proprietary and confidential parts possibly by becoming an independent contractor and filling out a confidentiality agreement.
I also think you will find that civil cases will be the biggest roadblock in this regard, but if you can get on in a defense type capacity then you should be good to go.
Hope something there helps ya.
If my memory serves me right, before the merger, MCSD had the first cyber unit, I bet you got the shaft on the merger and your budget probably got slashed.
I've worked a couple of cases on Shadeland ave and like the guys out there, they have nice rigs, write blockers, software, training, etc. but a few of them are looking towards retirement as they have their 25 in.
Hornbrook is GREAT people and he's a credit to the dept.
Good day Indy50!
Did you ever find someone to help you out?
I'm geographically distant from you, and any of my processes or trade secrets would not be exposed… wink
So if you wanna share some insight on the way things are done in some private sectors, drop me a note.
Eric
P.S. Big fan of Zig's work wink
No, I am still looking. That's awesome, I will send you a PM.
Thanks,
