SANS Digital Forensics and Incident Response Blog: Category - Computer Forensics

Digital Forensics Case Leads: Evolving Malware Market, Feint Attacks, and Malicious Hacker Psychology

This week's edition of Case Leads features tools to discover MD5 hashes and extract Flash files from PDFs. We also have recommendations on network defense from researchers who have been studying the psychology of cyber attackers. There's evidence of service consolidation in the malware market and the FBI cautions that denial of service attacks are … Continue reading Digital Forensics Case Leads: Evolving Malware Market, Feint Attacks, and Malicious Hacker Psychology


SIFT Workstation 2.12 Release and ChangeLog

Due to several issues with libewf and minor bugs found in log2timeline and log2timline-sift, we have released a new version of the SIFT Workstation. This is not a major release, but I did have time to go and refresh many packages built in it. The next release will update the ubuntu backend and be a … Continue reading SIFT Workstation 2.12 Release and ChangeLog


Digital Forensics and Incident Response Summit 2012 — Call For Speakers

Dates: Summit Dates: June 26 - 27, 2012 Pre-Summit Course Dates: June 20 - 25, 2012 Summit Venue: Omni Hotel Downtown Austin 700 San Jacinto @ 8th Street Austin, TX 78701 Phone: (512) 476-3700 Fax: (512) 397-4888 Omni Hotel The 5th annual Forensics and Incident Response Summit will again be held in the live musical … Continue reading Digital Forensics and Incident Response Summit 2012 — Call For Speakers


The SANS360: Digital Forensics and Incident Response Lightning Talk - Dec 13 2011

Open/Free for Everyone - Registration Required ATTEND IN PERSON REGISTER HERE: https://computer-forensics.sans.org/sans360/dec2011/ SIMULCAST WEBCAST REGISTER HERE: https://www.sans.org/webcasts/digital-forensics-incident-response-lightning-talk-%96-live-webcast-94919 TWITTER HASHTAG: #sans360 DATE: Tuesday, December 13, 2011 LOCATION: Hilton Washington & Towers ROOM: Columbia 5 6:30 PM-7:30 PM - SANS360: DFIR Lightning Talk 7:30 PM -8:30 PM - Networking Happy Hour - w/Food and Drinks 10 … Continue reading The SANS360: Digital Forensics and Incident Response Lightning Talk - Dec 13 2011


Log2timeline Plugin Creation

About a year ago, I needed to add an Apache log to a supertimeline I was working on. I wrote a bash script to do this, as I was not familiar with perl at the time. I later went back and learned some basics of perl and converted it to my first log2tlimeline plugin. Since … Continue reading Log2timeline Plugin Creation