Lee Whitfield has opened up nominations for the Forensic 4cast awards, held during the SANS DFIR Summit. This site has been nominated as blog of the year the last two years running, and it is greatly appreciated if you could take the time to nominate it again. Forensic 4:cast Awards 2019 – Nominations are Open […]

As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS Alexis Brignoni at ‘Initialization Vectors’ has released a new script for pulling out plists found embedded within the iOS KnowledgeC database. I came to Alexis with a problem of automating the extraction of these plists and he delivered in spades. […]

As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS Alexis Brignoni at ‘Initialization Vectors’ posted a couple of times this week He released an Android-Usagestats-XML-Parser tool, based on research presented by Jessica Hyde last year Android Usagestats XML Parser And expands on this with a parser for Android recent […]

Thanks to Lodrina for her help. She’s away the next couple of weeks so I’ll probably be doing links only for her sections. Please encourage her to come back as she’s helped me immensely with my time. As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS Dave Cowen at […]

With contributions by Lodrina! As always, thanks to those who give a little back for their support! FORENSIC ANALYSIS Dave Cowen at the ‘Hacking Exposed Computer Forensics Blog’ continued his daily blogging This week’s Sunday Funday is on execution methods that aren’t recorded in the amcache. Oleg Skulkin shared his winning answer Daily Blog #617: […]

Thanks to Lodrina for her help, you can catch her teaching FOR500 in St Louis next month, and she’s also asked me to share that her company is hiring in Boston. As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS Dave Cowen at the ‘Hacking Exposed Computer Forensics Blog’ […]