±Forensic Focus Partners

Become an advertising partner

±Your Account


Forgotten password/username?

Site Members:

New Today: 0 Overall: 36568
New Yesterday: 3 Visitors: 136

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Videos

±Latest Jobs

Page 2

Shining A Light On Spotlight

Monday, February 03, 2020 (14:52:13)
Mark Scanlon discusses his student's research at DFRWS EU 2019.

OK, good morning, how are you doing? My name is Mark Scanlon, I’ve been speaking to some of you guys already. I'm from University College Dublin. This work was primarily conducted by Taj Atwal, who had intended to come and present it to you, but at the last minute had to cancel his plans.

Taj was a student of ours in UCD on Master’s program who graduated last year, and this is a paper that has been produced as a result of his dissertation research as part of his Master’s. And it’s co-authored by myself and my co-author from UCD An Le-Khac, who supervised the project.

Watch the video
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (860 reads)

Take It Or Leave It: Triaging Digital Evidence

Friday, January 31, 2020 (13:30:39)

Have you ever served a search warrant and stared at the mountainous amount of digital media collected and wondered how much is actually related to your investigation? Or, have you had to undertake terabytes of storage media and wondered if the needle would ever be found in the haystack of storage?

It’s As Easy As E D L. All About EDL Method In Oxygen Forensic Detective

Friday, January 31, 2020 (13:27:19)
The problem that has been plaguing investigators is the fact Android devices offer different mechanisms of data protection. For this reason, it is almost impossible to develop a single method of extracting and decrypting a device’s data. Of course, in many cases data extraction is possible, but often the data is still encrypted. There has been a lot of buzz about EDL from manufactures of forensic software as well as investigators. Let’s take a look at what EDL is and how it can be used in mobile forensics.

What's Happening In Forensics - Jan 29, 2020

Wednesday, January 29, 2020 (18:18:45)
Errata Security discuss how to decrypt WhatsApp end-to-end media files.

The HTCIA 2020 call for presentations is now open.

Linux Security Labs share a review of GRR Rapid Response.

Rick Holland recaps the SANS Cyber Threat Intelligence Summit 2020.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (969 reads)

Amped Authenticate Update 15518: Customizable Reporting, Sun Position And More

Wednesday, January 29, 2020 (12:20:47)
Amped Software just released another update to Amped Authenticate, the leading forensic software for digital forensic experts to exploit the data behind digital images, allowing analysis of image integrity, authenticity, metadata, source and history, and detection of tampering prior to its use as intelligence and evidence.

Version 15518 now includes many new features: customizable reporting, CRP Comparison, enhanced JPEG Ghost Map filter, Check Sun Position, improved HEIF support, and more.

What's Happening In Forensics - Jan 28, 2020

Tuesday, January 28, 2020 (16:24:13)
Andrea Fortuna shares some thoughts on the Jeff Bezos phone hack data.

Ciarán O'Brien provides a triage script to help with retrieving artifacts from compromised Citrix hosts.

Magnet discuss how their new AXIOM Cyber tool can help with employee misconduct investigations.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (985 reads)

What's Happening In Forensics - Jan 27, 2020

Monday, January 27, 2020 (21:38:38)
Adam Harrison discusses evidence of program execution on different Windows OS versions.

Magnet release AXIOM Cyber for remote acquisitions.

Foxton Forensics discover some differences between Chromium and Edge Chromium artifacts.

Andrew Hoog unpicks NavdDoomConductor, which tracks precise geolocation and time on iOS.

Élsio Pinto shares some tips on becoming a DFIR practitioner.

MSAB release the Kiosk Mk III.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (1108 reads)

Magnet AXIOM Cyber — A New Way To Simplify Remote Forensic Investigations

Monday, January 27, 2020 (20:32:56)
Magnet Forensics is proud to announce the official release of their newest product: Magnet AXIOM Cyber. AXIOM Cyber is an innovative new solution purpose-built for organizations that need to perform remote acquisitions as well as collect and analyze evidence from cloud sources, computers and mobile devices.

In addition to all the innovative features found in Magnet AXIOM, Magnet Forensics’ best-in-class digital forensics solution, AXIOM Cyber enables investigators to remotely collect evidence from target endpoints. Its remote collection agent also allows investigators to covertly deploy it to a device and if connectivity is lost, automatically resume collection of data from the point where it left off.

Forensic Focus Forum Round-Up

Monday, January 27, 2020 (10:54:25)
Welcome to this month’s round-up of recent posts to the Forensic Focus forums.

Forum members discuss IPv6 to IPv4 conversion in response to a warrant request.

Can you explain why this prefetch folder is empty?

How would you respond to this bitcoin extortion case?

Forum members discuss the information stored by WebCacheV01.dat.

Would you prefer digital forensics masters-level training to be full-time, part-time, or block-based? Share your thoughts on the forum.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (804 reads)

What's Happening In Forensics - Jan 24, 2020

Friday, January 24, 2020 (13:34:39)
Steve Anson's new book, Applied Incident Response, is now available on Amazon.

Ciarán O'Brien has been working on a Jupyter notebook to help automate the process of pulling IOCs from artifacts recovered from compromised Citrix Netscalers.

Heather Mahalik instigates a conversation about why people work in digital forensics.

Digital forensics professionals recommend their favourite training options for under $2,500.

SANS share a talk on finding and decoding malicious Powershell scripts.
  • Posted by: scar
  • Topic: News
  • Score: 0 / 5
  • (1104 reads)