by Yuri Gubanov [email protected]
Belkasoft Ltd. http://belkasoft.com
This article describes the various types of digital forensic evidence available on users’ PC and laptop computers, and discusses methods of retrieving such evidence.
Download article in PDF format
A recent … Read more
First published October 2009
by Access Data
www.accessdata.com
Historically, criminal or corporate investigations involving computer equipment began by immediately disconnecting any compromised machines from the network, powering them down, and securing them in a proper environment where they would
First published September 2005
Mariusz Burdach
[email protected]
Warsaw, March 2005
last update: July 11, 2005
Abstract
This paper presents methods by which physical memory from a compromised machine can be analyzed. Through this methods, it is possible to extract useful … Read more