NIST Draft on Cell Phone Forensics
NIST recently published a new draft on Cell Phone Forensics for public comment. Download here.
Private homepage of Alexander Geschonneck (Berlin, Germany).
NIST recently published a new draft on Cell Phone Forensics for public comment. Download here.
My company the HiSolutions AG plans a hands on computer forensics training in Berlin. More information are available on http://computer-forensik.org in geman language.
Brain Carrier just released new version of his disk forensics tools. You can download The Sleuthkit 2.06 an Autopsy 2.08 from http://www.sleuthkit.org/. Update: There is a new windows version available.
Brian Kaplan from Carnegie Mellon University just released a tool called Live View. With Live View you can convert a raw dd image or physical device to a VMware virtual machine.
Brian Carrier just released a new version of his computer forensics tool kit *). Changes on The Sleuth Kit (TSK):
The Internet Security Zone Blog published an interesting article about the FBI forensic analysis of the stolen veteran’s administration laptop that
Cell Phone Forensics Tools Last year the NIST published an interesting paper about Cell Phone Forensics Tools. They tested a couple of this tools and made some interesting remarks on working with them.
Arne Vidstrom from ntsecurity.nu wrote an interesting paper about problems with forensic RAM dumps from Windows XP. His summary on this topic
I published a new article about computer forensics in the German security journal KES (The Information Security Journal). The main focus is about the S-A-P investigation method (Secure Analyze and Present) and which tool function is really needed. You can read more about the content on my German computer forensics blog.
New versions from Sleuthkit & Autopsy. Brian Carrier published new versions from his outstandig open source forensics tools. Sleuthkit 2.04 has the following bugfixes and new features (taken from changelog):