Forensicating

Review: Magnet Forensics’ AXIOM 2.5

The other day I sat down with the guys at Magnet to take a look through some of the new features in the latest update of AXIOM, and how it compares both to previous updates and to their IEF tool.

This review will focus on AXIOM 2.5. The current version at the time of writing is 2.6; with new versions coming out every month, it’s worth keeping an eye on the new features in each release. One of the main ideas behind version 2.5 was to focus heavily on improving speed performance.

IEF has a similar workflow to AXIOM’s, but it is just an artifacts tool, whereas AXIOM is a full forensics tool. In IEF you choose your evidence sources, fill in the case details and hit ‘Find Evidence’. It will then process your evidence and give you a report on the artifacts. The point of IEF is to have everything in front of you in a format that is easy to analyse, making it simpler to find the most important things and deal with those as a priority.

One big difference between IEF and AXIOM is that AXIOM performs acquisitions, whereas IEF will just load sources that have already been acquired.

Read the full review on Forensic Focus

Books, Forensicating

Executing Windows Command Line Investigations by Hosmer, Bartolomie & Pelli

I met Chet Hosmer at DFRWS in Providence, Rhode Island, earlier this year. Over lunch I explained my upcoming digital forensics book to him, and he was very supportive. When I arrived back in England a copy of one of his books was waiting for me, along with an encouraging note.

Well, the DFIR book project has taken a backseat over the last few months due to me taking on a new psychology of religion research project, but maybe it’ll come back. In the meantime I thought I’d take a look at Chet’s book and write a quick review of it.  Continue reading “Executing Windows Command Line Investigations by Hosmer, Bartolomie & Pelli”

Forensicating

Angus Marshall talks about standardisation

The hottest topic in digital forensics at the moment, standardisation is on the tip of everyone’s tongues. Following various think pieces on the subject and a plethora of meetings at conferences, I spoke to Angus Marshall about his latest paper and what he thinks the future holds for this area of the industry. You can find the interview here.

Forensicating

Review: BlackLight from BlackBag

When I had a meeting with BlackBag a while ago, I was pleasantly surprised by how knowledgeable and enthusiastic the representatives seemed about their products. Not only were they open to showing me all sorts of things the tools could do, they also knew the back stories to how they were created, and why they’re necessary for the field.

So when I got the chance to review the latest version of BlackLight, I decided to go for it.  Continue reading “Review: BlackLight from BlackBag”

Personal

Hello everyone, it’s been a while

Hi readers! Sorry I haven’t been around much over the last few weeks; summer is conference season and I have alternately been on planes, in hotels, and trying to recover from being on planes and in hotels. However now I am home again, hopefully for the next few months at least, so normal-ish service should resume. As much as ‘normal’ can be applied as a moniker around here, anyway.

So, what have I been up to?  Continue reading “Hello everyone, it’s been a while”

Weekly Round-Ups

How Do I Fit It All In? Six-Month Roundup

A few months ago, tired of people going “How do you fit it all in?!”, I started a blog series to answer that exact question. It was partly for other people but also partly for me; I wasn’t sure how I fitted it all in either. The answer used to be “I barely sleep” but these days I’m often in bed by 8pm, sometimes significantly earlier, so I knew it wasn’t that.

But apparently I still manage to live many lives and do loads of things. So how do I do it? This week marks week 21 of my ‘How Do You Fit It All In?’ series so I thought I’d go back through them and work out if there’s a direct answer to that question.  Continue reading “How Do I Fit It All In? Six-Month Roundup”

Forensicating

A couple of interviews

The book I’m gradually (veeeery gradually) writing about starting out in digital forensics will eventually have several interviews in it, to help people see what it’s really like to work in the industry. If you’re interested in being one of the interviewees, drop me a line.

In the meantime, here are a couple of interviews I did on Forensic Focus recently. Continue reading “A couple of interviews”