Education and Training: PhD Cybercrime Topics
For my Master's Thesis I wrote about the legalities involved in allowing companies to hack back when attack (I termed it a Cyber Stand Your Ground law). Seems it got some traction as of late...
View ArticleGeneral Discussion: Memory Forensics (Volatility) - Dst port 445 to public IP
marcusplexus wrote: Any suggestions? Where do these IP addresses belong to? Perhaps they belong to Microsoft and and are part of their usual data collection procedures, called "Telemetry" and "User...
View ArticleGeneral Discussion: Validation and decision making
tootypeg wrote: I would be really interested to have your feedback on this, any evaluation or additions, edits would be very much appreciated. You might want to follow some flow-charting/process...
View ArticleGeneral Discussion: Memory Forensics (Volatility) - Dst port 445 to public IP
Thanks for your replies: 1. I checked the article from FireEye. The artifacts are not present on the system 2. The IPs are not related to Telemetry. 3. MDCR: Good observation about MS networking. I...
View ArticleGeneral Discussion: Validation and decision making
Quote:: Generically speaking I can see a "generic" issue with the reliance on either: 1) published (and thus peer reviewed) material 2) peer reviewing in general We all know how (particularly in the...
View ArticleMobile Phone Forensics: S7 Edge secure startup
What did you use to brute force ?! 7+ PINs are rare, since they are hard to type - while driving for example Are you sure it is not asking for password instead of PIN ?!
View ArticleGeneral Discussion: Validation and decision making
Process flow has now been updated, original post edited and also reported HERE
View ArticleGeneral Discussion: Memory Forensics (Volatility) - Dst port 445 to public IP
Saw the IP address now, here is the Whois: https://apps.db.ripe.net/db-web-ui/#/query?searchtext=%2080.106.26.167#resultsSection And yes, 445 is MS Directory services. Should never leave the network....
View ArticleClassifieds: WTB: Cellebrite dongle or services
I have three Cellebrite Touch UFED available with all accessories. 2,500-6500 USD. Message for more info.
View ArticleGeneral Discussion: Validation and decision making
Some additions with warnings for confidence measures and catches for testing/ validation and competence. - HERE its just a draft, i can see typos in this
View ArticleGeneral Discussion: Mobile Forensics Discord Server
I wanted to provide a link to an active and growing Discord server where we currently have 315+ other investigators, forensic vendors, and lots of channels and resources to help with your...
View ArticleClassifieds: T35689iu Forensic Bridge Write Blocker Tableau
I have 2X Hardware Write blockers with cables Model T35689iu . Working perfectly just not longer have use for them. I was using a specific USB3.0 internal card with these for hookup (not included). I...
View ArticleForensic Software: XtremeForensics (ISeek/ILook) - Your Opinion?
Thanks for the info. I will check out the other thread.
View ArticleClassifieds: WTB: Cellebrite dongle or services
This is from over a month ago and someone bumped it to try and sell their machines.
View ArticleEducation and Training: Would appreciate feedback on dissertation methodology
Thanks for your replies, I've considered some of the points made. In saying I would like to create a real world scenario, this is referring to the data sets that will be created and the deletion of...
View ArticleGeneral Discussion: Good discussion re disclosure of digital evidence in the UK
In addition to the oral evidence to the UK House of Commons Justice Select Commitee already referred to, here is myearlier written evidence. https://goo.gl/YUXQfm If rather than watching the tv version...
View ArticleGeneral Discussion: Good discussion re disclosure of digital evidence in the UK
Peter_Sommer wrote: If rather than watching the tv version of the oral evidence you'd like a transcript, here it is:...
View ArticleGeneral Discussion: Validation and decision making
Taking into account the feedback which I have gladly received, this is the completed draft - HERE Im hoping this captures everything involved in generic decision making when deciding whether to report...
View ArticleMobile Phone Forensics: S7 Edge secure startup
pcook8198 wrote: I totally agree, 7+ digits seems a little to long as studies show 11 digits is roughly the max the human mind is capable of. I'm not sure what studies you're referring to, but I would...
View Article