Forensicating

Review: Magnet Forensics’ AXIOM 2.5

The other day I sat down with the guys at Magnet to take a look through some of the new features in the latest update of AXIOM, and how it compares both to previous updates and to their IEF tool.

This review will focus on AXIOM 2.5. The current version at the time of writing is 2.6; with new versions coming out every month, it’s worth keeping an eye on the new features in each release. One of the main ideas behind version 2.5 was to focus heavily on improving speed performance.

IEF has a similar workflow to AXIOM’s, but it is just an artifacts tool, whereas AXIOM is a full forensics tool. In IEF you choose your evidence sources, fill in the case details and hit ‘Find Evidence’. It will then process your evidence and give you a report on the artifacts. The point of IEF is to have everything in front of you in a format that is easy to analyse, making it simpler to find the most important things and deal with those as a priority.

One big difference between IEF and AXIOM is that AXIOM performs acquisitions, whereas IEF will just load sources that have already been acquired.

Read the full review on Forensic Focus

Books, Forensicating

Executing Windows Command Line Investigations by Hosmer, Bartolomie & Pelli

I met Chet Hosmer at DFRWS in Providence, Rhode Island, earlier this year. Over lunch I explained my upcoming digital forensics book to him, and he was very supportive. When I arrived back in England a copy of one of his books was waiting for me, along with an encouraging note.

Well, the DFIR book project has taken a backseat over the last few months due to me taking on a new psychology of religion research project, but maybe it’ll come back. In the meantime I thought I’d take a look at Chet’s book and write a quick review of it.  Continue reading “Executing Windows Command Line Investigations by Hosmer, Bartolomie & Pelli”

Investigation

How Do Criminals Communicate Online?

Flashpoint, a business intelligence agency specialising in the deep and dark web, recently published a report on the economy of criminal networks online. The report looks not only at where criminals go to communicate on the internet, but also how their communications are structured, and the ways in which online communication has changed the criminal landscape.

Far from the kind of jack-of-all-trades portrayed in TV dramas, today’s cybercriminals structure their operations much like a business, each person having their own specialisms and reporting to the people above them. This helps to ensure that every member of the network takes on tasks that don’t overwhelm them, and often also ensures that the level of communication is kept to a minimum. Each party is only in contact with the level directly above, thus decreasing the likelihood of breaking up the entire network if a single individual’s identity is uncovered by law enforcement.

Read the full article on ForensicFocus

Forensicating, Investigation

John Patzakis on how a new Federal Rule of Evidence will affect digital investigators

The other day I interviewed John Patzakis, Executive Chairman at X1 Discovery, about an article he’s written about a new amendment to Federal Rule of Evidence 902.

Subsection (14) will come into play this December, and will mean that all electronic data will be required to be “self-authenticating”.

Continue reading “John Patzakis on how a new Federal Rule of Evidence will affect digital investigators”

Travel

A Year In Recap: Travel

I can’t believe 2015 is nearly over. The year has flown past so quickly, probably due at least in part to the fact that I’ve been out of the country so much. There were a couple of periods where I’d fly somewhere, fly home, dump my stuff, pick up the next round of stuff, and leave immediately. There was a point when I flew from Barcelona to Birmingham with a four-hour stopover in my own house.

Inspired by several of the travel bloggers I follow, I thought I’d do a round-up of my salient travel moments this year. Some good, some bad: all ones that I don’t think I’ll forget in a hurry.

Continue reading “A Year In Recap: Travel”