±Forensic Focus Partners

Become an advertising partner

±Your Account


Forgotten password/username?

Site Members:

New Today: 3 Overall: 35628
New Yesterday: 2 Visitors: 153

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Webinars

Latest Forum Posts

 Topics   Replies   Author   Views   Last Post 
  Digital Forensic Investigator - HC Phone Examination Unit 0 DenMo 33   Mon Jun 17, 2019 10:32 am 
  Pulling Android RAM 4 karishma 2504   Mon Jun 17, 2019 7:45 am 
  Whiteboard 3 TinyBrain 366   Sun Jun 16, 2019 9:19 pm 
  Huawei EVA-L09 P9 lock pattern bypass 6 eilco 3163   Sun Jun 16, 2019 8:25 pm 
  Pulling iCloud data 5 DataR 2084   Sun Jun 16, 2019 6:59 pm 

What's Happening In Forensics

Friday, June 14, 2019 (11:55:41)
The Eclectic Light Company share a directory of all the free software that's available via their site.

Marcos Fuentes Martínez argues that the price we pay for rapid data extraction is the loss of potentially important data.

Rushit Soni shows how to decrypt WhatsApp backups using Oxygen Forensic Detective.

Hexacorn shares some run key research from the Symposium sur la Sécurité des Technologies de l'Information et des Communications.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (621 reads)

What's Happening In Forensics

Thursday, June 13, 2019 (16:06:38)
West Midlands Police have come under fire for advertising unpaid digital forensics roles, which include looking at IIOC.

Graeme Horsman shares his paper on the need for research on digital artefacts.

Kristian Lars Larsen discusses the future of AI in digital forensics.

On the same topic, Oxygen Forensics' Lee Reiber speaks to James Kotecki about AI in digital forensic crime scenes.

AccessData show how they're assisting law enforcement with massive international investigations.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (804 reads)

Forensic Focus Forum Round-Up

Thursday, June 13, 2019 (10:40:16)
Welcome to this month’s round-up of recent posts to the Forensic Focus forums.

Is there a generic reader for smart card forensics?

Forum members discuss setupapi.offline.log.

What tools would you recommend for pulling data from iCloud?

Is there any way to recover a /var/log directory that has been removed deliberately?

Would you capture a memory image for a machine that was turned off, shipped in and imaged a couple of days since last use?
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (673 reads)

What's Happening In Forensics

Wednesday, June 12, 2019 (16:58:16)
Sytech have lost their accreditation after being discovered contracting work out to Fun Fone Shop.

Alexis Brignoni talks about the Samsung My Files app.

Oleg Afonin writes about the forensic implications of iOS jailbreaking on the Elcomsoft blog.

Cellebrite share some uses of UFED on Android.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (969 reads)

What's Happening In Forensics

Tuesday, June 11, 2019 (15:27:08)
Mike Evans talks about how digital forensics can be a window into the soul.

MSAB's Joel Bollo encourages us to transform the mobile forensic space from an 'arms race' to an opportunity.

Jim Hoerricks writes about seizing electronic evidence from crime scenes.

Jeffrey Wassenaar shows how Windows log files can be corrupted when they're exported, and gives advice on what to do if that happens.

Sandfly Security show how to recover a deleted binary from active Linux malware.

Magnet AXIOM is now VICS certified.

Marco Fontani provides this week's Tip Tuesday for Amped: how to interpret dates and times associated with your image.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (685 reads)

What's Happening In Forensics

Monday, June 10, 2019 (19:28:53)
Jack Farley discusses forensic analysis of OpenVPN on iOS.

Brett Shavers writes about the easy way to learn DFIR.

The Eclectic Light Company has updated Nalaprop to parse natural language.

Digital Forensics Magazine share news of a new UK initiative to encourage young people to use their computer skills in positive ways.

Phill Moore has reviewed Magnet's AXIOM Examinations AX200.

Didier Stevens has updated sets.py.

The 'Find My iPad' feature helped to track down a cop's stolen gun.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (628 reads)

How To Read A Moving Low-Quality License Plate Using Amped FIVE

Monday, June 10, 2019 (10:24:17)
Thanks to TV series and movies, people nowadays believe that when it comes to digital images and videos, everything is possible. Some of you may remember the “never-ending enhance” sequence in Blade Runner or the magic zoom they have in CSI. Then we turn to reality, where cameras with poor components, coupled with Digital Video Recorders (DVRs) set to kill the quality to save storage space, mean that you often end up with a bunch of smashed pixels. Sometimes, you are asked to take vital information from them.

Contrary to what you see in movies, there are cases in which there’s just nothing to do, except invent information that is not there – something we must avoid, of course. However, sometimes the information you are looking for is not clearly available in any frame alone, but it may become way more intelligible by wisely integrating multiple frames. In this post, we’ll show you how two of Amped FIVE’s brand new filters, Perspective Stabilization and Perspective Super Resolution, can really be a game changer in such situations.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (531 reads)

What's Happening In Forensics

Friday, June 07, 2019 (12:36:21)
Sharon D. Nelson shares her thoughts on Craig Ball's recent article about the war on ediscovery.

Passware explain Bitlocker decryption.

Another arrest has been made in the Darkode case.

OpenText share five things they've learned since GDPR came into being.
  • Posted by: scar
  • Topic: All
  • Score: 0 / 5
  • (733 reads)

BitLocker Decryption Explained

Friday, June 07, 2019 (11:37:01)
Decrypting BitLocker volumes or images is challenging due to the various encryption options offered by BitLocker that require different information for decryption.

This article explains BitLocker protectors and talks about the best ways to get the data decrypted, even for computers that are turned off.

What's Happening In Forensics

Thursday, June 06, 2019 (15:26:49)
Sarah Edwards shares her presentation 'Watching the Watchers' from Objective by the Sea.

Ariel Watson discusses what blockchain means for digital evidence sharing.

Bryan Ambrose demonstrates how to restore Windows sticky notes from volume shadow copies.

The Digital Investigations Conference will be taking place in Switzerland next week.

Cellebrite share five examples of investigations that used UFED.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (658 reads)