SANS recently published a good summary of Windows memory forensics acquisition and analysis tools. It’s a good compilation
Windows Memory Forensics Tools
«
23 December 2008 |
21:32 |
Forensics, Resources, Tools |
1 Comment | 465 Views
»
new linux incident response script
«
18 October 2008 |
12:53 |
Forensics, Tools |
1 Comment | 408 Views
»
We updated the ForensiX Linux Incident Response Script. You can find the new version at
We updated the ForensiX Linux Incident Response Script. You can find the new version at
open forensics jobs
«
18 October 2008 |
12:13 |
Forensics |
1 Comment | 319 Views
»
I have some open positions in my german forensics & discovery team. Please
I have some open positions in my german forensics & discovery team. Please
3rd edition of my book
«
4 May 2008 |
8:47 |
Articles, Forensics |
No Comments | 313 Views
»
3rd Edition of “Computer-Forensik. Computerstraftaten erkennen, ermitteln, aufklären.”
The new revised edition of my book on computer forensics in German language is available.
For detailed information and the TOC check out computer-forensik.org or go directly to amazon.
3rd Edition of “Computer-Forensik. Computerstraftaten erkennen, ermitteln, aufklären.”
The new revised edition of my book on computer forensics in German language is available.
For detailed information and the TOC check out computer-forensik.org or go directly to amazon.
computer forensics workshops in Berlin and Frankfurt
«
4 April 2008 |
17:00 |
Events, Forensics, Speeches |
No Comments | 523 Views
»
In collaboration with the german IT journal iX I’m going to give again computer forensics lessons in Frankfurt and Berlin.
In collaboration with the german IT journal iX I’m going to give again computer forensics lessons in Frankfurt and Berlin.
Vista Forensics Slides
«
6 March 2008 |
15:21 |
Events, Forensics |
No Comments | 887 Views
»
I pulished my Vista Forensics slides on my german computer forensics website.
I pulished my Vista Forensics slides on my german computer forensics website.
Bypassing a Windows login password with forensic tools
«
24 February 2008 |
14:37 |
Forensics, Security |
No Comments | 1,185 Views
»
Lance Mueller published a good article about bypassing a Windows login password with forensic tools . You can use his instructions if you plan to boot an Windows image within a virtual machine and like to login.
Lance Mueller published a good article about bypassing a Windows login password with forensic tools . You can use his instructions if you plan to boot an Windows image within a virtual machine and like to login.
frozen memory aquisition
«
22 February 2008 |
16:33 |
Forensics, Live Response, Security |
No Comments | 963 Views
»
Cool stuff from Princeton researchers. They published a paper “Cold Boot Attacks on Encryption Keys” and showed that whole disk encryption can be defeated by relatively simple methods. They demonstrated their methods by using them to defeat three disk encryption products: BitLocker,
Cool stuff from Princeton researchers. They published a paper “Cold Boot Attacks on Encryption Keys” and showed that whole disk encryption can be defeated by relatively simple methods. They demonstrated their methods by using them to defeat three disk encryption products: BitLocker,
