tag:blogger.com,1999:blog-7838351931877149150.post7859125179793427947..comments2023-05-10T08:54:36.216-07:00Comments on Practical Digital Forensics: We have a Problem Part IIMarcus Thompsonhttp://www.blogger.com/profile/08239669336658431390noreply@blogger.comBlogger10125tag:blogger.com,1999:blog-7838351931877149150.post-10221386269843404802022-01-27T08:01:03.163-08:002022-01-27T08:01:03.163-08:00online casino no deposit bonus codes 2021 - Kadang...online casino no deposit bonus codes 2021 - Kadangpintar<br />Online Casino No Deposit Bonus Codes 2021 Listing of the best No Deposit Casinos ✓ List of the <a href="https://legalbet.co.kr/1xbet/" rel="nofollow">1xbet</a> Most Legit and <a href="https://www.kadangpintar.com/" rel="nofollow">kadangpintar</a> Expensive Bonuses ✓ Mobile Bonuses <a href="https://worrione.com/" rel="nofollow">바카라</a>Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-7838351931877149150.post-45056314738667008392020-08-05T17:43:54.843-07:002020-08-05T17:43:54.843-07:00Hello Everyone !
USA SSN Leads/Dead Fullz availab...Hello Everyone !<br /><br />USA SSN Leads/Dead Fullz available, along with Driving License/ID Number with good connectivity.<br /><br />All SSN's are Tested & Verified.<br /><br />**DETAILS IN LEADS/FULLZ**<br /><br />->FULL NAME<br />->SSN<br />->DATE OF BIRTH<br />->DRIVING LICENSE NUMBER<br />->ADDRESS WITH ZIP<br />->PHONE NUMBER, EMAIL<br />->EMPLOYEE DETAILS<br /><br />*Price for SSN lead $2<br />*You can ask for sample before any deal<br />*If you buy in bulk, will give you discount<br />*Sampling is just for serious buyers<br /><br />->Hope for the long term business<br />->You can buy for your specific states too<br /><br />**Contact 24/7**<br /><br />Whatsapp > +923172721122<br /><br />Email > leads.sellers1212@gmail.com<br /><br />Telegram > @leadsupplier<br /><br />ICQ > 752822040Spam Leadshttps://www.blogger.com/profile/09168433180155207815noreply@blogger.comtag:blogger.com,1999:blog-7838351931877149150.post-17739994830151872982015-02-24T19:26:38.764-08:002015-02-24T19:26:38.764-08:00Thanks Marcus for the information of distributed s...Thanks Marcus for the information of distributed searching. Actually I am just thinking any means to reduce the pressure of putting more and more storage for forensic image to cope with the increasing size of backlogs.... <br /><br />By the way, does anyone have any suggestions on tools for initial triage on scene or any good practise for initial triage? Thanks in advance.BiLiBaLahttps://www.blogger.com/profile/11133802254815514404noreply@blogger.comtag:blogger.com,1999:blog-7838351931877149150.post-62005421035085423462015-02-24T16:32:36.358-08:002015-02-24T16:32:36.358-08:00Thanks for the comment, BiLiBaLa.
One of my peers...Thanks for the comment, BiLiBaLa.<br /><br />One of my peers wrote his thesis on Distributed Digital Forensics. This may be a solution: http://www.cerias.purdue.edu/apps/reports_and_papers/view/4700<br /><br />I just found his website. Looks like he created a survey about the project and there wasn't much interest. Though, the home page says he is rewriting it in Java. http://www.nielsensolutions.com/projects.htmlMarcus Thompsonhttps://www.blogger.com/profile/08239669336658431390noreply@blogger.comtag:blogger.com,1999:blog-7838351931877149150.post-1703388017382608832015-02-24T01:32:52.650-08:002015-02-24T01:32:52.650-08:00Hi, Marcus, initial filtering before seizing the d...Hi, Marcus, initial filtering before seizing the digital evidence surely will decrease the size that a forensic analyst need to study, but will that be impractical as most front-liner may not post the skill for forensic tool. Also as Keydet89 said, prior communication are always too luxurious to time-limited investigation. Inevitably, the whole computer/server have to be seized and a full-size forensic image have to be arquired as a working copy.<br /><br />So the next question is: how to deal with the enomorously increasing size of forensic image? any better (and more economical) solution other than RAID or SAN?BiLiBaLahttps://www.blogger.com/profile/11133802254815514404noreply@blogger.comtag:blogger.com,1999:blog-7838351931877149150.post-59158540037557316062013-07-11T09:43:09.104-07:002013-07-11T09:43:09.104-07:00hi marcus I'm daniel from Mauritius. I'm n...hi marcus I'm daniel from Mauritius. I'm new in digital forensics but i'm looking for a title for my Msc in Digital forensics. I've read about the big data problem it seems a very good subject. can I get some help please.Anonymoushttps://www.blogger.com/profile/06419803795154013840noreply@blogger.comtag:blogger.com,1999:blog-7838351931877149150.post-82322007765306539342011-09-25T14:44:55.695-07:002011-09-25T14:44:55.695-07:00Not sure about Triage, AFAICT Triage is all about ...Not sure about Triage, AFAICT Triage is all about targetting evidential low-hanging fruit to prioritise the order that digital devices get forensicated. I prefer an "enhanced previewing" approach, whereby digital devices are processed natively, if no evidence is found then get rid of it, if evidence is found then image and forensicate it. Using this approach we got rid of a 2 year backlog of cases in our lab. Counter-intuitively we were actually viewing more images (in IIOC cases), than when we were doing a full forensic examination. The benefit of this is that you only have to image only those disk you KNOW have evidence on them, drastically reducing the amount of data you have to archive. You also get a "heads up" of where on the disk the evidence is located e.g "zip archives in unallocated space".FOTDhttps://www.blogger.com/profile/11227668436010031200noreply@blogger.comtag:blogger.com,1999:blog-7838351931877149150.post-55830740593132043982011-05-23T11:43:18.532-07:002011-05-23T11:43:18.532-07:00As a current student in the field of Security and ...As a current student in the field of Security and CF at Stark State College I can say there is little emphasis on triage, we are learning the traditional forensic approach. I appreciate your incite into the issue. No time is spent on tool development but only what is available to possibly get the job done. So I see my future with the same issue. Learning the tried and true tools and methodology while the field is moving on to try and keep up with the incidence rate.Williamhttps://www.blogger.com/profile/09098933862137109257noreply@blogger.comtag:blogger.com,1999:blog-7838351931877149150.post-70311588614454005182011-05-18T10:05:16.535-07:002011-05-18T10:05:16.535-07:00Thanks Keydet89 for taking time to read and post! ...Thanks Keydet89 for taking time to read and post! I agree that goals are underutilized. I just started reading "Windows Registry Forensics" by Carvey, and there is a nice little section on goals. From what little experience I have, it seems that we often incorrectly take the Ancestry.com approach - "You really don't have to know what you're looking for. You just have to start looking."Marcus Thompsonhttps://www.blogger.com/profile/08239669336658431390noreply@blogger.comtag:blogger.com,1999:blog-7838351931877149150.post-42673052339533417152011-05-18T04:32:56.937-07:002011-05-18T04:32:56.937-07:00This problem is developing.
In reality, we've...<i>This problem is developing.</i><br /><br />In reality, we've always had this issue. I can remember when having a hard drive at all was a big deal. And you're absolutely correct...this "big data" problem is an issue, <b>IF</b> it is approached using traditional forensic analysis techniques.<br /><br />There are other issues regarding the "big data" problem than are really mentioned here. One is the disconnect between responders and analysts, and the communication of goals of the analysis. Having supported LE at one point in my career, I clearly remember sitting with data in front of me, but needing to speak to an agent or officer regarding the issue.<br /><br />One of the issues that really isn't discussed in much detail is that many of those committing cybercrimes are focused and dedicated, while their adversaries (IT staff, LE, etc.) do not have that luxury. The best weapon against knowledgeable specialists is...knowledgeable specialists.H. Carveyhttps://www.blogger.com/profile/08966595734678290320noreply@blogger.com