×

Warning

JUser: :_load: Unable to load user with ID: 1469
JUser: :_load: Unable to load user with ID: 1460
JUser: :_load: Unable to load user with ID: 2056
JUser: :_load: Unable to load user with ID: 1760
JUser: :_load: Unable to load user with ID: 1014
JUser: :_load: Unable to load user with ID: 1674
JUser: :_load: Unable to load user with ID: 1613
JUser: :_load: Unable to load user with ID: 1641
JUser: :_load: Unable to load user with ID: 1616
Software

Software (29)

Many jobs require writing in some form or another. Writing can range from documenting inventory of empty boxes to full-blown and extremely detailed legal briefs of a complex criminal investigation.  Your basic report writing and notetaking falls somewhere between these two ends of the spectrum. When we write, but generally, we suck at it. <I might be speaking only for myself…>. We suck at it because we don't like doing it because it is boring.

Read more at https://www.dfir.training/dfir-training-blog/no-job-is-finished-until-the-paperwork-is-done

Earlier in the year Digital Forensic Analyst Marco Neumann wrote a series of great blog posts analysing artifacts created by Skype apps (both Windows Store and Desktop versions):
 

There are few things cooler than finding that one of your forensic tools was updated with new features.  It does not matter which tool, or which new feature. There are times when some of the new features don’t apply to what I work on but are cool nonetheless as it shows that a tool is constantly being developed.  Small, new features are neat, but the major updates are usually so good that I have to immediately test it out.

Read more https://www.dfir.training/dfir-training-blog/2019-10-23-02-13-47

A total of 3 winners will be picked to each win a 3-year license of Forensic Notes!

 

 

Read more here: https://www.dfir.training/dfir-training-blog/forensic-notes-giveaway

What's New in Belkasoft Evidence Center 2020 Version 9.7

Belkasoft Evidence Center 2020 v.9.7 (or, in short, BEC ) is an all-in-one forensic solution , combining mobile and computer forensics as well as memory, cloud and remote forensics, and incident investigations in a single tool. Given its affordable price, it is one of the best choices among other available products on the market.

In v.9.7, Belkasoft significantly expanded BEC support of various mobile data sources and improved its Remote Forensics module.

Among major features included in BEC 2020 v.9.7 there are:

  • Acquisition of MTK based devices
  • Acquisition via MTP/PTP protocols
  • iOS 13 support
  • Support for Xiaomi and Huawei backups
  • F2FS file system parsing and analysis
  • CarPlay analysis
  • Major improvements of Remote Forensics ( macOS support; WMI deployment )
  • Connection Graph revamped
  • Numerous improvements in Artificial Neural Network analysis of photos
  • The search of Japanese texts improved
  • Numerous updates to artifact extraction

Read more https://belkasoft.com/new

Belkasoft announces the upcoming release of BEC ( Belkasoft Evidence Center 2020 ) version 9.7. In v.9.7, Belkasoft significantly expanded BEC support of various mobile data sources and added support for more operating systems in its Remote Forensics module.

Among features expected in the upcoming release of BEC 2020 there are:

  • Acquisition of MTK based devices ; acquisition via MTP/PTP protocols ; iTunes backups supported for iOS 13
  • Support for Xiaomi and Huawei backups
  • F2FS file system parsing and analysis
  • CarPlay analysis
  • Major improvements of Remote Forensics ( macOS and Linux support; WMI deployment )
  • Incident Investigation module improvements (more activities extracted; artifact layout made more intuitive)
  • Support of AFF4 images
  • Connection Graph revamped
  • Numerous improvements in Artificial Neural Network analysis of photos
  • The search of Japanese texts improved
  • Numerous updates to artifact extraction

 

Read more here https://belkasoft.com/sneak_peek

KeyScout is a utility built into Oxygen Forensic ® Detective which uncovers and extracts user data, tokens and passwords from apps and web browsers as well as Wi-Fi hotspot passwords, iTunes backups, and operating system data on PCs running Windows.

Read more https://blog.oxygen-forensic.com/oxygen-forensic-key-scout/

BlackLight quickly analyzes computer volumes and mobile devices. It sheds light on user actions and now even includes analysis of memory images. BlackLight allows for easy searching, filtering and otherwise sifting through large data sets. It can logically acquire Android and iPhone/iPad devices, runs on Windows and Mac OS X, and can analyze data from all four major platforms within one interface. It’s simply the best option available for smart, comprehensive analysis.

Read more https://www.blackbagtech.com/blacklight.html

The following information will allow you to familiarize yourself with the Forensic Notes application, including many new features for organizing & sharing notes in a team environment.  Though investigations have typically been a team effort, investigators’ notes have typically not been easy to share, as they usually resided in a paper notebook.  With Forensic Notes, you will now be able to easily share important information, without having to photocopy or somehow recreate key information.  This increases collaboration and saves everyone a significant amount of time.

Read more https://www.forensicnotes.com/how-to-document-digital-forensic-investigations-with-forensic-notes/

Skadi is a free, open source collection of tools that enables the collection, processing and advanced analysis of forensic artifacts and images. It works on MacOS, Windows, and Linux machines. It scales to work effectively on laptops, desktops, servers, the cloud, and can be installed on top of hardened / gold disk images.

Read more http://www.sectechno.com/skadi-dfir-framework-to-collect-process-and-hunt/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Sectechno+%28SecTechno%29