±Forensic Focus Partners

Become an advertising partner

±Your Account


Forgotten password/username?

Site Members:

New Today: 5 Overall: 36487
New Yesterday: 9 Visitors: 165

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Videos

±Latest Jobs

Latest Forum Posts

 Topics   Replies   Author   Views   Last Post 
  Analyst Workstation - What are you using? 12 skyccord 2059   Tue Jan 28, 2020 3:39 pm 
  Cellebrite Full File System - New Release - UFED 7.28 6 cs1337 555   Tue Jan 28, 2020 3:20 pm 
  Purchase Cellebrite UFED Ultimate / PA 0 rcvrrcvr 127   Tue Jan 28, 2020 11:45 am 
  Client being extorted to pay bitcoin or database released 4 cybertend 632   Tue Jan 28, 2020 10:50 am 
  Open source/free software solutions for extractions? 5 Suai 559   Tue Jan 28, 2020 9:16 am 

What's Happening In Forensics - Jan 28, 2020

Tuesday, January 28, 2020 (16:24:13)
Andrea Fortuna shares some thoughts on the Jeff Bezos phone hack data.

Ciarán O'Brien provides a triage script to help with retrieving artifacts from compromised Citrix hosts.

Magnet discuss how their new AXIOM Cyber tool can help with employee misconduct investigations.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (94 reads)

What's Happening In Forensics - Jan 27, 2020

Monday, January 27, 2020 (21:38:38)
Adam Harrison discusses evidence of program execution on different Windows OS versions.

Magnet release AXIOM Cyber for remote acquisitions.

Foxton Forensics discover some differences between Chromium and Edge Chromium artifacts.

Andrew Hoog unpicks NavdDoomConductor, which tracks precise geolocation and time on iOS.

Élsio Pinto shares some tips on becoming a DFIR practitioner.

MSAB release the Kiosk Mk III.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (384 reads)

Magnet AXIOM Cyber — A New Way To Simplify Remote Forensic Investigations

Monday, January 27, 2020 (20:32:56)
Magnet Forensics is proud to announce the official release of their newest product: Magnet AXIOM Cyber. AXIOM Cyber is an innovative new solution purpose-built for organizations that need to perform remote acquisitions as well as collect and analyze evidence from cloud sources, computers and mobile devices.

In addition to all the innovative features found in Magnet AXIOM, Magnet Forensics’ best-in-class digital forensics solution, AXIOM Cyber enables investigators to remotely collect evidence from target endpoints. Its remote collection agent also allows investigators to covertly deploy it to a device and if connectivity is lost, automatically resume collection of data from the point where it left off.

Forensic Focus Forum Round-Up

Monday, January 27, 2020 (10:54:25)
Welcome to this month’s round-up of recent posts to the Forensic Focus forums.

Forum members discuss IPv6 to IPv4 conversion in response to a warrant request.

Can you explain why this prefetch folder is empty?

How would you respond to this bitcoin extortion case?

Forum members discuss the information stored by WebCacheV01.dat.

Would you prefer digital forensics masters-level training to be full-time, part-time, or block-based? Share your thoughts on the forum.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (422 reads)

What's Happening In Forensics - Jan 24, 2020

Friday, January 24, 2020 (13:34:39)
Steve Anson's new book, Applied Incident Response, is now available on Amazon.

Ciarán O'Brien has been working on a Jupyter notebook to help automate the process of pulling IOCs from artifacts recovered from compromised Citrix Netscalers.

Heather Mahalik instigates a conversation about why people work in digital forensics.

Digital forensics professionals recommend their favourite training options for under $2,500.

SANS share a talk on finding and decoding malicious Powershell scripts.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (771 reads)

Industry Roundup: Cloud Forensics

Friday, January 24, 2020 (13:12:42)
by Christa Miller

Only a few short years ago, the idea of recovering forensic data from the cloud seemed like either troubling overreach, or unnecessarily redundant given the availability of evidence from mobile devices.

As encryption became more prevalent on those, however, law enforcement has increasingly come to rely on cloud-based evidence to build cases. The law appears to be catching up, too, with legislation like the United States’ Clarifying Lawful Overseas Use of Data (CLOUD) Act and California’s new GDPR-style Consumer Privacy Act, along with decisions like last September’s Google LLC v. CNIL, in which a European court held that Europe’s “right to be forgotten” only applies to EU citizens.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (899 reads)

What's Happening In Forensics - Jan 23, 2020

Thursday, January 23, 2020 (15:35:09)
Ryan Benson shows how Google search URLs can be a great source of digital forensic information.

Magnet's Jamie McQuaid discusses how deduplication can help your forensic analysis.

Paraben's Amber Schroader talks about getting started in digital forensics.

Cellebrite share a case study of multinational product fraud uncovered using digital forensic techniques.

Kroll announce their new KAPE training.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (783 reads)

The iPhone Health App: A Forensic Perspective

Thursday, January 23, 2020 (15:06:41)
Jan Peter van Zandwijk discusses his research at DFRWS EU 2019.

Hello, my name is Jen Peter van Zandwijk. I work with the Netherlands Forensic Institute. And in this half-hour I will tell you about some research that they did on the Health app on iOS, and then you can go to lunch.

I did this research not long ago, I worked together with my colleague Abdul Boztas, who helped me with a lot of the experiments.

And the most important thing that I want you to remember from this presentation is that the app registers both steps and distances, and we have found that the accuracy of the steps registered is much better than the accuracy of the distances registered.

Watch the video
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (826 reads)

What's Happening In Forensics - Jan 22, 2020

Wednesday, January 22, 2020 (13:53:13)
DFRWS announce a Women in Forensic Computing Workshop and Digital Forensics Bootcamp as part of this year's EU conference.

Mattia Epifani presents the CASE Ontology to the European Commission in Brussels.

Mike Art Rebultan shares his route to a DFIR career.

Andrea Fortuna looks at how the GrayKey tool works.

Lee Reiber discusses the role of digital forensics in tackling case backlogs.

Magnet announce the speaker lineup for their user summit.

BlackBag share an on-demand webinar showing how to identify suspects through digital evidence.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (1259 reads)

Review: AccessData Enterprise From AccessData

Wednesday, January 22, 2020 (13:11:35)
by Jade James

AccessData Enterprise enables investigators to forensically image and analyse devices. It also provides a means of workflow analysis and documentation, as well as a level of staff management. The inclusion of FTK means that examiners can conduct forensic investigations without interrupting business operations.

AD Enterprise enables the user to preview live data on any end user point that has the agent installed. With remote collaboration, investigators across different departments can work together more efficiently. Discretion is often crucial to a successful investigation; knowing this, AccessData have ensured that with Enterprise, investigators can conduct investigations without arousing suspicion amongst end users.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (971 reads)