SANS Digital Forensics and Incident Response Blog: Category - Computer Forensics

Digital Forensics Case Leads: Viva Las Vegas Forensics at BlackHat, SecurityBSidesLV, and DefCon

The 103 degree heat hits you in the face like a baseball bat. Some people say that 103 degrees (in the shade) is "no big deal", because, as they continue, "it's a dry heat." Yea, well, my oven is a dry heat, and I don't stick my head in it. But that is exactly the … Continue reading Digital Forensics Case Leads: Viva Las Vegas Forensics at BlackHat, SecurityBSidesLV, and DefCon


Malware Analysis Challenge to Strengthen Your Skills

One of the best ways to learn how to analyze malicious software is to practice. Here's a set of challenge questions, building upon an earlier network forensics puzzle, so you can strengthen your malware analysis skills. Continue reading Malware Analysis Challenge to Strengthen Your Skills


Hostile Forensics

Hostile Forensics Hello everybody to my first Blog post both here at SANS. I've released a whitepaper that may be of interest to people in the forensic community, and wanted to both share it with you and get feedback and criticism on it. Seeing a few great presentations today here at DefCon, namely by … Continue reading Hostile Forensics


More is less: why the mobile forensics race to support the most phones is the wrong race

Before I co-founded viaForensics, I was the Chief Information Officer for a large international packaging company. We had a fair number of smart phones and we occasionally needed to examine a phone. I knew little about digital forensics at the time and as I researched the various offerings, I was overwhelmed. My initial reaction was … Continue reading More is less: why the mobile forensics race to support the most phones is the wrong race


Digital Forensics Case Leads: SIFT 2.1, Volatility 2.0

Looks like I picked a great week to do my first Digital Forensics Case Leads post. With excellent new tools, great blog posts to tell you about and more, my job was easy. Tools: The one stop shop for digital forensic investigations has just arrived with lots of new forensic goodness in addition to the … Continue reading Digital Forensics Case Leads: SIFT 2.1, Volatility 2.0