"Computação Forense"
Follow
19.1K views | +6 today
 
Scooped by João Carvalho
onto "Computação Forense"
Scoop.it!

Product Review: Encase Forensic 7

Product Review: Encase Forensic 7 | "Computação Forense" | Scoop.it
Guidance Software, a computer forensics, security, and e-discovery software maker, upgraded EnCase Forensic to make it easier to collect, analyze, and report on data in civil litigation, criminal trials, and investigations.
more...
No comment yet.

From around the web

"Computação Forense"
Tecnologia e Computação Forense - Computer Forensics
Curated by João Carvalho
Your new post is loading...
Your new post is loading...
Scooped by João Carvalho
Scoop.it!

iOS Application Security Part 39 - Sensitive information in memory - InfoSec Institute

iOS Application Security Part 39 - Sensitive information in memory - InfoSec Institute | "Computação Forense" | Scoop.it
In this article, we will look at analyzing the memory contents of an iOS application. iOS applications may store sensitive information like passwords, sess
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Understanding Web Caching - InfoSec Institute

Understanding Web Caching - InfoSec Institute | "Computação Forense" | Scoop.it
Quite often we see Web pages that include images and other files loading faster than we expect. If you are wondering how that happens, Web caching could be
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

A New Type Of Malicious Document: XML

A New Type Of Malicious Document: XML | "Computação Forense" | Scoop.it
Since last week we see XML documents being spammed: they are actually Microsoft Word documents with VBA Macros. I wrote an ISC Diary entry (I'm a SANS ISC Handler now) detailing the internals of th...
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

EnCase 7.1 and FTK 5.5 Tool Evaluation Part 2 - Computer & Digital Forensics Blog

EnCase 7.1 and FTK 5.5 Tool Evaluation Part 2 - Computer & Digital Forensics Blog | "Computação Forense" | Scoop.it
This week for EnCase we go over new and updated features such as: capabilities of EnCase Portable, the Report Template Wizard, Encrypted drives, and how EnCase has expanded its reach to Apple’s OS X.
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

XRY Tutorials Introduction - Computer & Digital Forensics Blog

XRY Tutorials Introduction - Computer & Digital Forensics Blog | "Computação Forense" | Scoop.it
By working closely with XRY Logical as well as XRY Physical, we aim to create complete video tutorials explaining how to use both versions with three different smartphone operating systems.
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

How to series on programming libtsk with python Part 1, 2 and 3

http://hackingexposedcomputerforensicsblog.blogspot.com/2015/02/automating-dfir-how-to-series-on_21.html
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Forensic Analysis of SQLite Databases: Free Lists, Write Ahead Log, Unallocated Space and Carving

Forensic Analysis of SQLite Databases: Free Lists, Write Ahead Log, Unallocated Space and Carving | "Computação Forense" | Scoop.it
SQLite is a widely popular database format that is used extensively pretty much everywhere. Both iOS and Android employ SQLite as a storage format of choice, with built-in and third-party applicati...
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Keep A Portable Ubuntu Installation With You Wherever You Go

Keep A Portable Ubuntu Installation With You Wherever You Go | "Computação Forense" | Scoop.it
There's so much you can do with an Ubuntu installation. But what if you could take that same Ubuntu installation and make it portable so you can have it with you wherever you are? We've looked at several options where you can use Linux with your USB drive, but now we're going to take a…
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Get Your Data Back with Linux-Based Data Recovery Tools

Get Your Data Back with Linux-Based Data Recovery Tools | "Computação Forense" | Scoop.it
There are a number of solid tools on Linux that you can use to get back lost data.
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

TekDefense - News - Memory Forensics presentation from BSidesNola

As some of you may already know, a couple weeks back @HiddenIllusion and I gave a talk on Memory F...
João Carvalho's insight:

Memory Forensics - very good presentation!

more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Memory Forensics • /r/memoryforensics

Memory Forensics • /r/memoryforensics | "Computação Forense" | Scoop.it
Memory Forensics is an ever growing field. With the emergence of malware that can avoid writing to disk, the need for memory forensics tools and...
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Sanderson Forensics - Investigating Skype cloud based media_cache/image sharing with the Forensic Browser for SQLite

Sanderson Forensics - Investigating Skype cloud based media_cache/image sharing with the Forensic Browser for SQLite | "Computação Forense" | Scoop.it
Skype recently introduced cloud based operation and started moving away from peer-to-peer messaging with a view, to paraphrase Skype, of improving the service that we receive.

Without going into the pros and cons of this, from a forensic point of view it is irrelevant anyway, the move has had the effect of introducing a new set of artefacts and in particular a new location for stored/cached image files (pictures).

More information here: https://support.skype.com/en/faq/FA12381/what-is-the-cloud
This article deals with the SQLite tables that reference to these pictures, the locations of the pictures themselves and how to join the relevant tables, decode the data held in certain blob fields and create a report showing who sent what to whom including the pictorial evidence where possible.

At the end of the article I will have shown how the different tables fit together and will provide a Browser extension that will create the necessary tables and import the
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Email Forgery Analysis in Computer Forensics

Email Forgery Analysis in Computer Forensics | "Computação Forense" | Scoop.it
Email conversation index and other metadata can be used by a computer forensics expert during email forgery analysis to shed light on fraudulent emails.
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Windows 10 Forensics - Project Introduction

Windows 10 Forensics - Project Introduction | "Computação Forense" | Scoop.it
Our goal for this Windows 10 Forensics project is to analyze artifacts in Windows 10, and compare artifact locations between Windows 8.1 and Windows 10. After the comparison is finished, specific attention will be taken to OneDrive data, Windows Phone data, and the newer Office applications on Windows 10.
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Hacking Exposed Computer Forensics Blog: Automating DFIR - How to series on programming libtsk with python Part 3

more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Introduction to Memory Acquisition

Hello people, how are you? It follows a short document about how to dump memory for memory forensic analysis: Enjoy it and have a nice day. Alexandre Borges. (LinkedIn:
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

10 Brilliant Ways To Conduct Twitter Investigations

10 Brilliant Ways To Conduct Twitter Investigations | "Computação Forense" | Scoop.it
Save search
João Carvalho's insight:

Very Good and usefull

more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

USB Forensic "Roadmap"

USB Forensic "Roadmap" | "Computação Forense" | Scoop.it
As I have been researching and investigating USB Forensics I put together a "Roadmap" for my own personal reference. I made it using Maltego Case File and refer to it every now and then when I am a...
more...
No comment yet.
Scooped by João Carvalho
Scoop.it!

Test Drive | AccessData

Test Drive | AccessData | "Computação Forense" | Scoop.it
Chances are you’ve heard of all the features and benefits our products can provide. We are giving you the opportunity to test drive our products and see what they can do for you
João Carvalho's insight:

test Access Data for free, (for 20 days only, but...)

more...
No comment yet.