±Forensic Focus Partners

Become an advertising partner

±Your Account


Forgotten password/username?

Site Members:

New Today: 0 Overall: 33479
New Yesterday: 0 Visitors: 183

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

RSS Feed Widget

±Latest Webinars

Digital Forensics, Computer Forensics, eDiscovery

AccessData Introduces Quin-C, Next-Gen Solution For Digital Investigations

Friday, February 16, 2018 (12:14:07)
Breakthrough product delivers leading-edge forensic tools, comes in four different offerings based on user needs.

AccessData Group, a leading provider of integrated digital forensics and e-discovery software, today announced the launch of Quin-C, a pioneering new solution that supports and guides the unique workflows of investigators, corporate investigative and legal teams, and forensic labs of all sizes.

Latest BlackBag Release Provides End-To-End Solution For APFS

Friday, February 16, 2018 (10:34:45)
The release of BlackLight 2018 R1, when combined with MacQuisition 2018 R1, is the world’s first complete end-to-end acquisition, decryption, and analysis solution for the latest Apple File System (APFS).

Interview With Dr Jasmin Cosic, Associate Professor And Researcher

Thursday, February 15, 2018 (10:47:29)
Jasmin, you are currently an independent researcher, consultant, and ICT expert witness in digital forensics domain – can you tell us more about your work?

My main job is in Cantonal police, where I am leading a big ICT Department. From another side I am a university assistant professor, where I am teaching students on a few IT courses.

I also lecture in summer and winter schools about digital forensics and information security, focusing on digital evidence and the digital forensic investigation process.

For more than 10 years, I have participated in the digital investigation process, as an independent (court) ICT expert witness. The focus of my interest and research is on digital evidence and digital chain of custody.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (272 reads)

Webinar: Don’t Let Locked Devices Slow Down Your Investigation

Wednesday, February 14, 2018 (14:45:56)
Join us for a free live, interactive webinar on February 21, 2018 to discover how Cellebrite’s unique automatic Emergency Download mode (EDL) capability can provide you with forensically-sound access to extract physical data from devices. Industry experts will discuss how using EDL mode and Cellebrite's unique capabilities provide a valuable alternative method to recover device evidence as compared with other more traditional, time-consuming methods such as ISP, JTAG or Chip-off.

Attend this 60-minute webinar to learn how to:
- Detect EDL mode and access popular Qualcomm chipsets for forensically sound mobile device analysis
- Bypass device locks and get fast physical extraction using Cellebrite’s exclusive, automatic EDL capability
- Hear about best practices and other hardware and software techniques to enter EDL mode and perform physical extractions

Register here

Date: Wednesday 21st February 2018
Time: 10am EST / 3pm GMT / 4pm CET

Scott Lorenz, Professor of Criminal Justice at Central Texas College & Chief Forensic Analyst with Centex Technologies
Shahar Tal, Vice President of Research, Cellebrite Security Research Lab
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (409 reads)

Review Of MOBILedit Forensic Express From Compelson

Wednesday, February 14, 2018 (11:09:38)
MOBILedit Forensic Express is a mobile forensic solution from Compelson, who have been in the digital forensics market since 1996. In 2013 Forensic Express was created, and it’s now their most popular application due to its ability to quickly check what data can be extracted from a phone and perform forensic extractions in an easy-to-use way.

The software supports thousands of handsets including popular operating systems such as iOS, Android , Blackberry, Windows Phone, Windows Mobile, Bada, Symbian, Meego, Mediatek, Chinese phones, and CDMA phones. The software can handle many feature phones without an OS. This includes older models from as far back as 1996.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (424 reads)

Cellebrite Plays Key Role In Defining Global Standard For Digital Forensics Info

Tuesday, February 13, 2018 (10:14:27)
World leader in digital intelligence is contributing knowledge and expertise to establish a global interoperability standard for digital forensics solutions that increase collaboration and information sharing.

Techno Mode – The Fastest Way To Access Digital Evidence On Damaged SSDs

Monday, February 12, 2018 (08:48:34)
by Roman Morozov, NAND Data Recovery Tutor, ACE Lab

Recent statistics show that solid-state drives are getting a good share of the market of storage devices. And the popularity of SSDs is only expected to grow. There is already a large number of little-known manufacturers, who cut corners on parts of their drives. As a result, numerous low-quality products that can easily fail hit store shelves.

Digital forensic experts have to be prepared for this and are always looking for efficient ways of solving issues that may arise in their daily work. Almost all present-day SSDs have hardware data encryption. That’s why the chip-off method becomes useless for accessing the digital evidence on a damaged device. In this case, the Techno Mode is the only possible way to restore logical access to data on the SSD.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (526 reads)

New MOBILedit Forensic Express 5.1 Just Released With Improved Phone Unlocking

Thursday, February 08, 2018 (13:17:00)
Massive growth of MOBILedit continues, product development is strictly driven by feedback from you - forensic users. The new version comes with bypassing lock screen on many Android devices, hacking LG phones, parental check mode and many other improvements.

Memory Dump Formats

Thursday, February 08, 2018 (09:05:47)
As in other storage devices, volatile memory also has several formats. According to the acquisition method that is in use, the captured file format can be vary. According to (Ligh et al, 2018) the most commonly used memory dump formats are:

- RAW memory dump.
- Windows crash dump.
- Windows hibernation files.
- Expert witness format (EWF).
- HPAK format.

Raw memory dump is the most commonly used memory dump format by modern analysis tools. According to (Ligh et al, 2018) these raw file formatted memory dumps do not contain headers, metadata, or magic values.

Read More
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (614 reads)

Now Open - Register For The Magnet User Summit Series 2018

Wednesday, February 07, 2018 (16:23:55)
The Magnet User Summit Series is back, and it’s coming to more cities this year! We’re bringing news, hands-on learning, and our observations on industry issues to Las Vegas, US; London, England; Paris, France; and Dusseldorf, Germany. Visit the Magnet User Summit site for more details and to register.