Timeline Archives - Forensic Focus

Timelines In Digital Forensic Investigation: From Investigation To Court

10th September 202010th September 2020

Timelines have become a mainstay of digital forensic analysis in both public and private sectors. They help to explain what was happening on a given device or set of devices during a cybersecurity incident, a crime, a collision, or other… Read more

How To Analyze Windows 10 Timeline With Belkasoft Evidence Center

12th May 20209th July 2019

Temporal analysis of events (Timeline) can be beneficial when you want to reconstruct events related to computer incidents, data breaches, or virus attacks taking place on a victim’s computer. Historically, digital forensic timeline analysis has been broken down into two… Read more

Following The RTM: Forensic Examination Of A Computer Infected With A Banking Trojan

12th May 20206th May 2019

by Oleg Skulkin Researchers became aware of the activities of the RTM group in December 2015. Since then, phishing emails distributing the trojan have been sent to potential victims with admirable persistence. From September to December 2018 the RTM group… Read more

A guide to RegRipper and the art of timeline building

12th May 202025th September 2014

Background I have often heard RegRipper mentioned on forums and websites and how it was supposed to make examining event logs, registry files and other similar files a breeze (the event logs and the other files isn’t per say examined… Read more