General Discussion: search_db.h2.db - FrostWire H2 Database
Thanks, I was able to eventually connect to the database using the H2 console and run some SQL queries to view the files of interest.
View ArticleMobile Phone Forensics: Samsung F480 date/time
Nick, this is not necessarily for yourself but maybe others reading the forum in general We always steer the same scenario when talking time and date issues with our investigators Set your handset time...
View ArticleMobile Phone Forensics: Blackberry 8520 SMS timestamps
redcelica I cant post a screenshot of a good example I have which may want you to alter the thought process re time and dates, please pm me with your email and I will send direct to you
View ArticleMobile Phone Forensics: Forensics Android App
Evening all, Thought i'd post an update now that I've graduated and my final year project has been handed in / marked. 20 thousand words and hundreds lines of code later - it's finished. More images...
View ArticleMobile Phone Forensics: Faraday bags
Luke, could you mention why you would want a Faraday bag? If you could stipulate your reasons I am sure there would be a healthy debate on the rationale
View ArticleGeneral Discussion: Remote Forensics
F-Response is the way to go. add X-Ways and its total win!
View ArticleForensic Software: Decrypting EFS Help!
how does one decrypt EFS files in encase 7? Could you please explain if you were successful? I don't see how this can be done using only encase 7.
View ArticleEmployment and Career Issues: Graduate Job.
Send me a PM with your e-mail address and/or resume.
View ArticleGeneral Discussion: Jonathan Zdziarski : Waterboard
The tool works very well although I am using an early release of the tool which he named "ei". I didnt find any problems at all with the release and also exceptional at acquiring over wifi which may be...
View ArticleEmployment and Career Issues: Graduate Job.
Bulldawg wrote: Send me a PM with your e-mail address and/or resume. Thanks for your response, I have sent you the PM as you asked me to. Thanks
View ArticleForensic Software: DEFT Linux 8 public beta & DART 2 stable ready for download
With some delay due to life & work the DEFT Association is proud to announce the the newly born free Digital Forensics System optimized for Intel based 64-bit architectures: DEFT Linux 8! What’s...
View ArticleGeneral Discussion: Jonathan Zdziarski : Waterboard
. . . armresl wrote: Gotta love how this guy was part of the "community" and helped out with all kinds of things, and then got all LE happy to not help others except them.
View ArticleForensic Software: Decrypting EFS Help!
digitalcoroner wrote: Where can I download the EDS script from? Thanks.Did you install the sample scripts? If so that is where it is.
View ArticleGeneral Discussion: Artifacts of wiping
Have you looked at the UserAssist, MUICache, and other artifacts for the user that might indicate program execution? That might provide indications of the application used...
View ArticleGeneral Discussion: NIST deleted file recovery test images
tfink26 wrote: ... I have compared my results with the results on Perlustro.com's website and with some other examiners. I found that my results have met, or exceeded, the listed numbers. My apologies...
View ArticleGeneral Discussion: NIST deleted file recovery test images
tfink26 wrote: I also mentioned that I compare the results with other examiners when possible. I see, but the "some other examiners" must have then used different tools (or different commands or...
View ArticleGeneral Discussion: Facebook - Video Calls
Anyone had any experience in analyzing Facebook activity and if it is possible to recover any information from Facebook video calls. I'm working on a job where it seems all contact has been through...
View ArticleMobile Phone Forensics: Skimming device Magnetic Strip Decoding
A little late but I thought you might want a solution to this problem. There were three chips on this device, the first, verified by the manufacturer is the Magtek chip and its function is to read and...
View Article