iPhone forensics can be performed on the backups made by iTunes (escrow key attack) or directly on the live device. This article explains the technical
Digital forensics is one of the most interesting and exciting fields of information security that you can ever be fortunate enough to work in, but
Introduction: In my last article, we’d discussed the most important ways in which a rootkit enters a system and subsequently masks its presence so it
I was showing off a trick to export Firefox SQLite tables to a spread sheet, and while she is a forensics person, she had never
Introduction A rootkit is a piece of software that is written by someone, who at the very least, wants to spy on specific system calls
There is this misconception that iPhones are protected by the iPhone passcode. This may be true for non-jailbroken iPhones, but not for jailbroken ones. It
Lets pick up where we left off with the rootkit and post-exploitation video (http://www.youtube.com/watch?v=izv1b-BTQFw). Except, we are now doing incident response. First you’ll see some
SSL and network monitoring aren’t the most compatible of partners – even with the most sophisticated detection infrastructure in the world, you’ll not derive many
This analysis comes in handy in computer forensics cases such as porn or child pornography investigations. This video shows how to search through hundreds of
Alternate Data Streams are a way to store data on a machine that is not readily accessible to users. Using ADS, files are not easily
Sometimes the best evidence of a network intrusion resides in network or traffic logs. Snort is a well known open-source traffic analysis and network intrusion detection
