David Litchfield from NGSSoftware published some new material about Oracle Database Forensics.
The english Association of Chief Police Officers (ACPO) has released a new guide to collecting electronic evidence. The Good Practice Guide for Computer-Based Electronic Evidence has been revised by experts.
I’m proud to announce, that my team published yesterday a very cool Live Response CD for Linux and Windows in cooperation with the german journal iX. It contains a brand new Linux Live Response script and a build script for your own static binaries. This Live Response Script contains also an
All participants of the iX Computer Forensics Workshop 2007 can now download slides and other workshop material
The Sleuthkit (TSK) 2.08 is out now. The new version contains
Security Monkey published a good case study about evidence seizure and what happens, if you forget to asses all relevant system data after a security incident occurs.
The new DFRWS File Carving Challenge for the year 2007 has been released. The say: “The goal of this challenge is to design and develop AUTOMATED file carving algorithms that have high true positive and low false positive rates.”
In Germany we have an ongoing discussion about the question: should police or law enforment hack? Germany’s supreme court determined this month that police may not secretly hack into suspects’ computers. F-Secure made a quick poll
Microsoft published their “Fundamental Computer Investigation Guide For Windows”. The paper discusses processes and tools for use in internal computer investigations for windows systems.