Forensicating

A Recap And Some Results

In digital forensics news recently, I’ve posted a couple of things over at Forensic Focus.

Firstly, a recap of ICDF2C 2018, which took place in New Orleans a few weeks ago. An interesting conference, pleasantly small and with a strong focus on academia, it’s definitely one to watch. Read my full round-up here. Continue reading “A Recap And Some Results”

Forensicating

Review: Magnet Forensics’ AXIOM 2.5

The other day I sat down with the guys at Magnet to take a look through some of the new features in the latest update of AXIOM, and how it compares both to previous updates and to their IEF tool.

This review will focus on AXIOM 2.5. The current version at the time of writing is 2.6; with new versions coming out every month, it’s worth keeping an eye on the new features in each release. One of the main ideas behind version 2.5 was to focus heavily on improving speed performance.

IEF has a similar workflow to AXIOM’s, but it is just an artifacts tool, whereas AXIOM is a full forensics tool. In IEF you choose your evidence sources, fill in the case details and hit ‘Find Evidence’. It will then process your evidence and give you a report on the artifacts. The point of IEF is to have everything in front of you in a format that is easy to analyse, making it simpler to find the most important things and deal with those as a priority.

One big difference between IEF and AXIOM is that AXIOM performs acquisitions, whereas IEF will just load sources that have already been acquired.

Read the full review on Forensic Focus

Forensicating

MacQuisition From BlackBag Technologies

A few weeks ago I met up with a representative from BlackBag Technologies in a Breather room in London. He showed me how MacQuisition works and talked me through some of its capabilities.

Then I flew off to various conferences around Europe and the USA, and I finally got back last week so I have posted my review of the product. You can find it on Forensic Focus.

Also, sorry for the lack of posts recently. I’m trying to do about a million things but it’s 35 degrees in London today and they’re predicting it’ll reach 37 on Friday. I cannot brain in this heat.

Weekly Round-Ups

How Do You Fit It All In? #6

The latest instalment in a series in which I answer the ongoing question “How do you fit it all in?”, which people ask me when I tell them what I do.  Continue reading “How Do You Fit It All In? #6”

Books, Forensicating, Investigation

Practical Forensic Imaging by Bruce Nikkel

51tosmvhokl-_sx376_bo1204203200_Any book that begins with a foreword by Eoghan Casey is almost guaranteed to be a vital and immensely useful read in the field of digital forensics, and Practical Forensic Imaging is no exception.

The need to securely preserve digital evidence is of the utmost importance to any investigator, particularly in criminal cases where findings may need to be upheld in a courtroom situation. Despite the huge impact of this subject matter, however, there have been precious few books on the topic to date. Luckily, Practical Forensic Imaging steps in now to fill the gap.

Read the full review on Forensic Focus

Forensicating, Investigation

John Patzakis on how a new Federal Rule of Evidence will affect digital investigators

The other day I interviewed John Patzakis, Executive Chairman at X1 Discovery, about an article he’s written about a new amendment to Federal Rule of Evidence 902.

Subsection (14) will come into play this December, and will mean that all electronic data will be required to be “self-authenticating”.

Continue reading “John Patzakis on how a new Federal Rule of Evidence will affect digital investigators”

Forensicating, Travel

I’m Going To South Carolina And I’m Really Excited

When you google my name, you get some weird results. Case in point:

GoogleAlerts

Continue reading “I’m Going To South Carolina And I’m Really Excited”