SANS Digital Forensics and Incident Response Blog: Category - Computer Forensics

Course Review: Course Review: SANS FOR408 Computer Forensic Investigations - Windows In-Depth

There is a brand new course review posted over at The Ethical Hacker Network discussing FOR408Windows Forensics In-Depth authored by Ovie Carroll, Rob Lee, and Chad Tilbury. The reviewer, Jason Andress, discusses the course section by section. Jason took the course in the popular vLive format that SANS offers. Take a look. Continue reading Course Review: Course Review: SANS FOR408 Computer Forensic Investigations - Windows In-Depth


Digital Forensics Case Leads: Sleeper Malware targets diplomatic entities in Europe & Asia, banking trojan travelling through Skype, DropBox decryption, PE file analysis, and retrieving iPhone VoiceMail

In this issue of Case Leads, Magnet Forensics updates its IEF with new neat features, Analysing PE file with python, retrieving iPhone voicemail with Perl, sleeper APT target diplomats, banking trojans travelling through Skype... Continue reading'' this week of Case Leads. If you have an item you'd like to contribute toDigital Forensics Case Leads, please … Continue reading Digital Forensics Case Leads: Sleeper Malware targets diplomatic entities in Europe & Asia, banking trojan travelling through Skype, DropBox decryption, PE file analysis, and retrieving iPhone VoiceMail


Digital Forensics Case Leads: News from CES Las Vegas Might Open Doors for Automotive Forensics, Landmark Legal Rulings Impact DFIR Investigators, and Tackling Insider Fraud

In this issue of Case Leads we go around the globe to cover telematics app development from Ford at CES Las Vegas; to Russia for new tools that allow investigators to access files users try to keep encrypted; an anti-forensic tool that tries to hide details from memory forensic tools; the insider fraud threat; and … Continue reading Digital Forensics Case Leads: News from CES Las Vegas Might Open Doors for Automotive Forensics, Landmark Legal Rulings Impact DFIR Investigators, and Tackling Insider Fraud


Mexico has been selected for the first full Spanish FOR408 Windows Forensics In-Depth

—English view below—- Cuando inici en el medio de la Seguridad Informtica, hace ms de 16 aos y en el cmputo forense, hace 11 aos; era muy difcil encontrar informacin en Mxico y Amrica Latina sobre estos temas. Conocer las mejores prcticas, las tendencias e incluso acceder a capacitacin tcnica de alta calidad requera viajar … Continue reading Mexico has been selected for the first full Spanish FOR408 Windows Forensics In-Depth


Windows Memory Analysis In-Depth Course Launch #DFIR

Memory analysis skills are one of the most in-demand skills for digital forensics, incident response, and malware analysts today. In 2013, SANS is introducing a brand new 5-day class dedicated toWindows Memory Forensics. The hands-on course, written by memory forensics pioneer and developerJesse Kornblum, is incredibly comprehensive and SANS is proud to offer it as … Continue reading Windows Memory Analysis In-Depth Course Launch #DFIR