Your perfect lab

WarlocK88 · 2013-04-25T15:27:34Z

Hey guys!I was wondering, we all work or have worked in various laboratories. And I wanted to know and to see what would be your perfect lab.So lets say, you have a budget (solely for the purpose of equipment and not for hiring) of 100K$. How and on what would you spend it?Lab specifications General digital forensics, Mobile forensics, Malware analysis.My lab would be (main features)3 Dedicated servers - for heavy duty processing3 Dedicated working stations - i7 + 16 GB of Ram + 128 GB SSD1 main dedicated storage3 Logicube Dossier kits2 Cellebrite UFED Ultimate3 Tableu WBAD FTK Enterprise IDA Pro (fully featured)WinHex - forensics editionNetwitness analyzer WarlocK88

Page 2 / 2 Prev

General (Technical, Procedural, Software, Hardware etc.)

Last Post by Anonymous 13 years ago

15 Posts

11 Users

0 Reactions

1,516 Views

RSS

Jonathan

(@jonathan)

Prominent Member

Joined: 21 years ago

Posts: 878

27/04/2013 3:20 pm

The perfect lab would be one without people in suits and ties worrying more about paperwork than actual work, which would leave the techies and forensics people to do their thing instead of worrying about complete bullshit.

lol

Bitter much?

ReplyQuote

WarlocK88

(@warlock88)

Active Member

Joined: 15 years ago

Posts: 19

Topic starter 27/04/2013 4:55 pm

Love your responses and very glad that I could get some of that frustration out.. )

But on a serious note, I just want to get the knowledge floating..
Some info on what is your perfect choice would be.

Thanks for the serious ones here..

ReplyQuote

BitHead

(@bithead)

Noble Member

Joined: 21 years ago

Posts: 1206

27/04/2013 6:12 pm

But on a serious note, I just want to get the knowledge floating..
Some info on what is your perfect choice would be.

Seriously your parameters are so broad it would be difficult to respond with anything more than complete fantasy.

Is this a lab for me when I retire? A lab for 2 or 3 examiners? For 5 to 10 working for a small LE agency? For 20 examiners and 80 eDiscovery attorneys/paralegals? Other?

Fantasy within some budget? Straight dead box or does it need to cover IR/Live Response/eDiscovery?

ReplyQuote

sward6

(@sward6)

Eminent Member

Joined: 13 years ago

Posts: 23

27/04/2013 9:06 pm

The number/types of servers and workstations (and anything else) I'd include in the spec would depend substantially on the anticipated team size and case types I was dealing with. One thing I'd certainly add would be a backup system.

Rather than WinHex I'd get X-Ways worth it for the extra capabilities.

Depending on the case types I'm dealing with I'd probably get Internet Evidence Finder and NetAnalysis.

Rather than 2x Cellebrite units I'd get 1x Cellebrite and 1x XRY to give myself more options.

I'd get Tableau and Wiebetech write-blockers plus a full set of available adapters for each. TBH you could go all-Tableau or all-Wiebetech without issues it's certainly not as strong a recommendation as that of getting two mobile forensics tools.

I wouldn't buy dedicated disk copying devices, but that's just me.

This x10. I know it's not financially feasible for small-to-mid sized law enforcement agencies to have multiple mobile extraction devices; however, if you work with other local agencies in your area and coordinate a solution to where each agency has different mobile tools it would help out a lot.

I'd add large duel monitors to each workstation. Too much information on the screen w/ FTK/Cellebrite PA/Encase/ETC to not be able to spread it out on your monitor.

And this may be stating the obvious, but office work space is important too!

ReplyQuote