SANS Digital Forensics and Incident Response Blog: Category - Network Forensics

Digital Forensics Case Leads: The New Forensics, The CyberMilitia and Bill Gates Gets Behind Open Source?

Case Leads is loaded for bear this week, after a week's break. Here is some of what you will find: * Are you ready for "The New Forensics"? If not, you might be left in the dust at trial. * What if the good guys adopted the organizing techniques of Anonymous? That's the goal behind … Continue reading Digital Forensics Case Leads: The New Forensics, The CyberMilitia and Bill Gates Gets Behind Open Source?


Network Forensics (FOR558) in Arlington, VA

Now that the holidays are over, it's time to re-focus on challenges ahead. That includes training to help you to successfully tackle those tasks ahead in the new year. It's an ideal time to join Phil Hagen in Arlington, VA for FOR558: Network Forensics. This course has been in high demand, and now you'll be … Continue reading Network Forensics (FOR558) in Arlington, VA


Digital Forensics Case Leads: Forensicsball, Forensic security analysis of Google Wallet, Sprint Disables CIQ

Innovations in timeline forensics, a forensic security analysis of the Google Wallet, and Sprint disables the CarrierIQ "root kit" top this edition of Digital Case Leads. In the 2011 Hollywood blockbuster Moneyball, Brad Pitt plays the part of the real-life Billy Bean, the manager of the Oakland A's baseball team. In the film, Brad Pitt's … Continue reading Digital Forensics Case Leads: Forensicsball, Forensic security analysis of Google Wallet, Sprint Disables CIQ


A blackeye for Download.com? Nmap developer Fyodor says site mixes malware with infosec software

NMAP is one of the best-known open source security tools. NMAP helps in the discovery of hosts and devices on a network. It was created over 14 years ago by Gordon "Fyodor" Lyon. NMAP is a part of the curriculum of many SANS courses. Yesterday, many in the open source community were shocked by this … Continue reading A blackeye for Download.com? Nmap developer Fyodor says site mixes malware with infosec software


Digital Forensics Case Leads: PFIC 2011 Report, DNS forensics, Massive Flaws in Amazon EC2?

The Paraben Forensics Innovator's Conference was held last week in Park City, Utah. Your SANS Digital Forensic blogger attended the event, along with over 300 fellow, forensicators and lawyers. With information security events like BlackHat, and DefCon drawing thousands, this is yet another small event that has many advantages over the larger conferences. At these … Continue reading Digital Forensics Case Leads: PFIC 2011 Report, DNS forensics, Massive Flaws in Amazon EC2?