SANS Digital Forensics and Incident Response Blog: Category - Computer Forensics

Forensically mining new nuggets of Google Chrome

I was recently creating some slides on Chrome forensics for a class I'm teaching, when I really discovered for the first time just how popular it's actually become. As of last month, according to http://www.w3schools.com/browsers/browsers_stats.asp, Chrome is not only 50% more popular than internet Explorer, but is actually neck and neck with Firefox (36.6% vs. … Continue reading Forensically mining new nuggets of Google Chrome


Digital Forensics Case Leads: DUQU, Locks, Stego and Pirates What More Could You Ask For.

In this weeks CaseLeads, there's a bunch of new useful tools that might come in handy in certain situations while handling incidents'' PDF Analysis, Malware Analysis, Honeypots and MAC forensics! A sequel of a multi-part series on protecting our credentials whilehandling incidents. When some weird registry keys appear in log2timeline results, you discover an attack … Continue reading Digital Forensics Case Leads: DUQU, Locks, Stego and Pirates What More Could You Ask For.


Digital Forensics Case Leads: SSD Forensics; WebCams, Privacy and The Law; Anit-Forensics Goes Mainstream; Forensics Comes To The US Elections

Welcome to Digital Forensics Case Leads. It's a busy week in digital forensics, incident response and the law. In this edition: How the standards for obtaining a warrant for digital information might change. Do users really care about tracking and privacy online? Are anti-forensics and spoliation becoming more popular with the general public? Why Solid … Continue reading Digital Forensics Case Leads: SSD Forensics; WebCams, Privacy and The Law; Anit-Forensics Goes Mainstream; Forensics Comes To The US Elections


Digital Forensics Case Leads: Arrests galore between Hackers and "Operation Nanny", Updated tools and more.

This week in Case Leads numerous hackers were arrested as well as a online pedophile ring was disbanded. One new tool for flash analysis is out as well as updates to existing tools. A case study as well as working with the SIFT workstation and a quiz to solve using proper pirate Arrgot round everything … Continue reading Digital Forensics Case Leads: Arrests galore between Hackers and "Operation Nanny", Updated tools and more.


Free 3rd Gen iPad with SANS vLive courses - through March 21!

Through March 21, 2012 you will receive a Free 3rd Gen iPad with any vLive course. To get your Free 3rd Gen iPad: Register for a vLive course. Enter color specific promo code 0308_iPadBLK or 0308_iPadWHT when you check out. Please allow 4 weeks for delivery of your iPad. This offer is only available in … Continue reading Free 3rd Gen iPad with SANS vLive courses - through March 21!