The book I’m gradually (veeeery gradually) writing about starting out in digital forensics will eventually have several interviews in it, to help people see what it’s really like to work in the industry. If you’re interested in being one of the interviewees, drop me a line.
In the meantime, here are a couple of interviews I did on Forensic Focus recently. Read more
A few weeks ago I met up with a representative from BlackBag Technologies in a Breather room in London. He showed me how MacQuisition works and talked me through some of its capabilities.
Then I flew off to various conferences around Europe and the USA, and I finally got back last week so I have posted my review of the product. You can find it on Forensic Focus.
Also, sorry for the lack of posts recently. I’m trying to do about a million things but it’s 35 degrees in London today and they’re predicting it’ll reach 37 on Friday. I cannot brain in this heat.
SQLite forensics is an important part of many digital forensic investigations. Most smartphones and computer operating systems use SQLite, with each device often including hundreds of databases. Despite this extreme proliferation, SQLite forensics is often overlooked in conversations about current trends in digital forensics. Paul Sanderson’s book attempts to redress the balance and bring attention to the importance of SQLite forensics. Read more
This article is a recap of some of the main highlights from the Techno Security & Forensic Investigation Conference 2018, which took place in Myrtle Beach, SC from the 3rd-6th June 2018.
Under the sunny skies of South Carolina, the digital forensic community got together at the beginning of June this year to discuss topics ranging from international espionage to the admissibility of evidence obtained from the cloud. Read more
I read a lot. I write a lot. I work a lot. Sometimes these things coincide. One of the ways they coincide is through writing books about my day job, for which I also read books other people have written.
Here are a few of my favourite digital forensics books I’ve read over the past few years, which I’d recommend if you’re looking for relevant reading material. Read more
Mobile forensics is a growing subsection of digital forensic investigation. With the proliferation of devices, applications and operating systems available nowadays, it’s increasingly becoming a vital and complex field. The skillset needed to accurately acquire evidence from mobile devices may seem dauntingly wide-ranging, especially when so many of us are dealing with backlogs in the first place. How are we supposed to keep up to date with this ever-evolving challenge?
Luckily we have books like this to help us out. Read more
One of the most frequent questions I get from digital forensics students is about resources: where can they go to continue learning, where can they find out more about the industry, what are the best blogs and social accounts out there for DFIR people?
The below is by no means an exhaustive list, but here are some of the places I get my computer forensics news from, which you might find helpful. Read more
Last year I wrote a book. It’s called Windows Forensics Cookbook and I didn’t really want to write it, but I’m glad I did because now I know I can. It was a little too technical for my liking, really: I would have liked to have written something meatier in terms of text, and less screenshotty.
So this year I’m writing another book. With a working title of First Steps In Digital Forensics, it will be aimed at people who want to get into the industry. Whether you’re a student of a related discipline, a professional looking to switch industries, or just someone who’s intrigued by the field and wants to know what it’s really like, this book will have something for you.
A while ago I published a book. It’s a digital forensics textbook, and the guys over at Forensic Focus, where I normally write digital forensics related stuff, wanted me to promote it there. I couldn’t work out how to do that though: normally we either review books or interview the authors, but I couldn’t review my own book and I didn’t want to interview myself.
Enter Oleg, my co-author and very useful person, who took on more of the book than he’d originally agreed to when I got ill halfway through the process. Today I interviewed him on Forensic Focus about what he does as a day job, how he came to write the book, and what he thinks the most important current challenges are in digital forensics.
Take a look at the interview on Forensic Focus
An article on ABC News reports a new law in Victoria, Australia, which shifts the burden of proof from abuse victims to the institutions in which the abuse took place.
This is a Very Very Good Thing. At the moment, when a child is abused and it’s covered up (or otherwise not addressed) by an institution, the burden of proof is on the child to demonstrate that the abuse took place, and that the organisation knew and did nothing.
This new law means that it’s no longer the victim’s responsibility to prove that they were abused – instead, it’s the organisation’s responsibility to demonstrate that they had enough safeguards in place to prevent abuse from happening, or that there’s a reason why they couldn’t have known it was taking place.