Klayton Monroe and Jay Smith of KoreLogic Security were key members of the team announced as winners of the 2006 File Carving Challenge at the 6th Annual Digital Forensic Research Workshop (DFRWS). Challenge participants were asked to develop new tools and techniques to extract as many files as possible from a DFRWS-prepared data set while reducing the number of false positives. Data carving techniques are used during digital forensics investigations and existing file carving tools typically produce many false positives…The Challenge organizers, Brian Carrier, Eoghan Casey, and Wietse Venema, selected KoreLogic’s solution as the winning entry from numerous exciting submissions. “There were many strong entries in this year’s Challenge, which involved extracting files from an unstructured data set. KoreLogic’s approach used unique techniques to help recover files that were broken up into multiple pieces,” said Brian Carrier.
KoreLogic co-founder Klayton Monroe said, “It’s an honor to win the Challenge given the talent and expertise of the participants and organizers. We thank the DFRWS for the opportunity to participate and hope that our submission will help continue the advancement of file carving techniques.” The team’s original submission, tools, and other challenge-related details can be found at http://www.korelogic.com. The Workshop proceedings will be published by Elsevier in a special issue of Digital Investigation – The International Journal of Digital Forensics & Incident Response.
About KoreLogic:
Well known for its internally developed tools and methodologies, KoreLogic specializes in security assessments of mobile applications, software products, web applications, and IT infrastructure. KoreLogic also offers advanced “HardKore” training, incident response services, and intrusion analysis support. KoreLogic primarily serves the Fortune 1000 and provides applicable, risk-based security advice that is tailored to be readily understood by technical and management staff.
About the Annual Digital Forensic Research Workshop (DFRWS)
The DFRWS is a non-profit, collaborative group of researchers, industry, academics, law enforcement, and military/DOD staff who are interested in advancing the state of the art in digital forensics by sharing their results, knowledge, and experiences. An annual workshop is one focal point of this goal.
