forensics
RSS forensics
E-crime unit on track, says police chief
News North Wales police has also launched Datris, a public-private partnership, to provide computer forensics to the public and police forces. Plans for a national UK cyber crime policing unit remain on track despite the government stalling on funding... [13 Jun 2008]
The Critical Importance of Three-Dimensional Protection (3DP) in an Intrusion Prevention System
White Paper IDS tools have been instrumental in providing forensics about attacks and in determining over time what areas of the network become compromised. Many companies also employ network intrusion detection systems (IDS), which inspect the network traffic... [31 May 2008]
Trojan Defence: A Forensic View
White Paper This two part article investigates the fascinating area of Trojan & network forensics and puts forward a set of processes to aid forensic practitioners in this complex and difficult area. The Trojan defence; “I didn’t do it, someone else did”- myth... [10 Apr 2008]
Network Monitoring and Forensics
White Paper Distributed system fault detection and analysis has, until recently, focused on building passive monitoring tools without any system level knowledge. It is only now that new approaches, such as instrumenting the software used in the system to... [04 Mar 2008]
Analysis of USB Flash Drives in a Virtual Environment
White Paper The paper discusses the use of virtual environments in the analysis of USB flash drives in computer forensics investigations. After briefly introducing general concepts of a virtual environment and software tools the paper shows how this approach... [29 Feb 2008]
Symantec Security Information Manager(SSIM): A Technology Overview
White Paper It serves as a log consolidation system for identity management monitoring, compliance, and forensics requirements. Symantec Security Information Manager (SSIM) enables IT organizations to identify, prioritize, investigate, and respond to security... [11 Jan 2008]
Session Based Logging (SBL) for IP-Traceback on Network Forensics
White Paper The widely acknowledged problem of reliably identifying the origin of information in cyberspace has been the subject of much research. Due to the nature of the Internet protocol, the source IP can be easily falsified which results in numerous... [26 Dec 2007]
Internet Forensics: Obfuscation
White Paper The Achilles' heel of any Internet con artist is the web site they use to trick their victims. In order for the scam to function, victims have to be able to access a real site at a defined location on the Internet. [10 Oct 2007]
Businesses failing to safeguard sensitive data
News The researchers used "easily available" open source forensics tools, such as Autopsy and Helix, which they described as not requiring "significant levels of skill or knowledge to effect the recovery of remnant data from storage media". [25 Sep 2007]
TechNet Webcast: Network Forensics: Identifying Attack Signatures (Level 200)
White Paper Listening in on network traffic (network forensics) can reveal whether an application and data communications are secure, and point out possible reconnaissance processes preceding an attack. Learning the signatures of the breach traffic is also the... [31 Aug 2007]
Vast software 'counterfeiting ring' smashed
News Law-enforcement authorities and forensics specialists identified various replication plants involved in the CD production that were the source of counterfeit Microsoft products sold to business customers and consumers around the world, Microsoft... [25 Jul 2007]
Computer Forensics - Response Versus Reaction
White Paper Cyber crime potentially costs Australian businesses millions, if not billions of dollars in un-realised profits and exposes organisations to significant risk. And it is on the rise. In 2000, the Australian [19 Jul 2007]
Beginners Guide to Linux Forensics
White Paper This paper serves as a beginners guide to introducing the reader to a particular aspect of the Computer Forensics field, which is that of performing forensic analysis from within the Linux operating system. [03 Apr 2007]
Google has data-retention change of heart
News Richard M Smith, an internet security and privacy consultant at Boston Software Forensics, said Google should never be archiving the IP address and cookies on servers. Google is changing its data retention practices to make it harder to identify... [15 Mar 2007]
Did Scotland Yard 'hack' Downing Street computers?
News However, a report in the News of the World claims Downing Street gave detectives permission to send in an independent IT forensics expert to examine computers after police received information from a "mole" about allegedly incriminating emails. [22 Jan 2007]
