Uses of Computer Forensics
There are many practical uses of computer forensics. The recovery of data that can aid in a criminal or civil investigation is one such use. Computer forensics can also be used to recreate how and when a computer was used or how a virus was able to infiltrate into a network. Evidence can be extracted [...]
DEFT Linux 6 coming soon
It was just announced that DEFT Linux 6 will be released later this month. The downside? The initial release will be in Italian, with English and Spanish support coming in the next few months. Not that I’m complaining at all – if you’re excited to see what this release will contain, check out the DEFT [...]
Digital Copiers as a Forensic Utility
Just ran across this article on digital copiers – while the deployment of “smart” copiers isn’t exactly new, I think it’s worth briefly discussing. People often forget that many digital devices need to store data in order to function properly. When most people think of digital or computer forensics, they think of computers, cell phones, [...]
Blackberry backups are not as secure as RIM would have you believe
As with the iPhone, it turns out that Blackberry’s weak point is in the way that local backups are stored. While it’s been known that you can discover some information about an iPhone simply by using iTunes to make a backup, Blackberry has an air of tight security about them, as their devices first propagated [...]
Computer Forensic Evidence
There are a few key steps to make sure evidence located on a computer’s hard drive stands up to a challenge in court. The first thing that a computer forensics expert will look at is an indication that the hard drive image is forensically sound. If the image was preserved in EnCase’s E01 format, an [...]
Free Computer Forensics Tools
I recently came across a post that offers links to a few free computer forensics tools. I’m familiar with most of them, but there are always new tools to try. I’m interested in the Ubuntu guide on using a live CD, as I’ve been stubbornly sticking with the last free version of Helix and it’s [...]
Remote Data Acquisitions
Remote forensics is a growing field, as data passed over networks becomes increasingly useful in investigations.
Cell Phone Forensics – The Basics
There are so many new types of devices out there, from Droid phones to the iPhone, and from netbooks to the iPad. The question is: how do we retrieve and analyze this data in a forensically sound manner? Each device is different, but there are a few rules of thumb, all of which may change [...]
Data Recovery Services
If you’re having problems with a hard drive and are unable to access your data, you might consider a data recovery service to help you track down those important pictures or documents. Hard drive failure is not a fun problem to have, take it from me. You might wonder about what exactly goes on at [...]
DEFT Linux – Forensic Live CD
One of my favorite “inventions” of the modern computer age is the ability to boot into just about any operating system you’d like with a CD or USB drive. While Helix3 is an important tool in computer forensics, many other linux-based CD toolkits have multiple problems. Either a package wouldn’t be tested on certain hardware [...]
keep looking »