No problem Saj, I'm happy to help. We are very interested in the future of Remote and Live Forensics, as such I'm sure I can provide you with some slide or interview materials, just PM me.
M Shannon - F-Response
Hi Saj23,
I work UK LE and a number of my colleagues have done or are doing degrees in same subject and the common topics for their finals have been Live Forensics or VMware. Live forensics seems popular because of the developing tools re RAM & the encryption aspect, e.g. Helix, SPADA, Field Search, ADF Triage, FIM etc,etc so this gives you a wide range of subject matter to discuss and research.
Cheers Dave
If I was in your shoes -as I once was- I would probably do a case study that covered the main principles involved in the forensic examination of a computer system. I would use a computer system that you created from scratch, use the system for a period of time, keep a record of your activity and record the environment settings (timezone etc). You could then examine the forensic image of the system in order to show the validity of any findings using whatever tools you can get your hands on.
Good luck with whatever idea you decide on.
Hi All
Where can i get information regarding live & remote forensics. either books that i can use or internet webistes.
Thanks