SQLite forensics is an important part of many digital forensic investigations. Most smartphones and computer operating systems use SQLite, with each device often including hundreds of databases. Despite this extreme proliferation, SQLite forensics is often overlooked in conversations about current trends in digital forensics. Paul Sanderson’s book attempts to redress the balance and bring attention to the importance of SQLite forensics. Continue reading “SQLite Forensics by Paul Sanderson”
This article is a recap of some of the main highlights from the Techno Security & Forensic Investigation Conference 2018, which took place in Myrtle Beach, SC from the 3rd-6th June 2018.
Under the sunny skies of South Carolina, the digital forensic community got together at the beginning of June this year to discuss topics ranging from international espionage to the admissibility of evidence obtained from the cloud. Continue reading “Techno Security 2018 Round-Up”
The fifth instalment in a series in which I answer the ongoing question “How do you fit it all in?”, which people ask me when I tell them what I do. Continue reading “How Do You Fit It All In? #5”
Mobile forensics is a growing subsection of digital forensic investigation. With the proliferation of devices, applications and operating systems available nowadays, it’s increasingly becoming a vital and complex field. The skillset needed to accurately acquire evidence from mobile devices may seem dauntingly wide-ranging, especially when so many of us are dealing with backlogs in the first place. How are we supposed to keep up to date with this ever-evolving challenge?
Luckily we have books like this to help us out. Continue reading “Mobile Forensics – Advanced Investigative Strategies by Oleg Afonin & Vladimir Katalov”
In January 2017, I got an email from a publisher. They asked if I wanted to write a book about digital forensics. I said no. They asked again. I said no again. They kept asking more and more nicely, and offering me more and more things in exchange. I kept saying no. I wasn’t trying to negotiate a higher price, I just really didn’t want to write a digital forensics textbook.
In the end I said yes if I could have a co-author. I found Oleg Skulkin via Twitter, and we signed contracts and started writing a book together. Eventually, Windows Forensics Cookbook was born.
Unfortunately everything didn’t go quite how I’d expected. Continue reading “Finding A Publisher For Your Book”
One of the most frequent questions I get from digital forensics students is about resources: where can they go to continue learning, where can they find out more about the industry, what are the best blogs and social accounts out there for DFIR people?
The below is by no means an exhaustive list, but here are some of the places I get my computer forensics news from, which you might find helpful. Continue reading “Digital Forensics Resources”
A while ago I published a book. It’s a digital forensics textbook, and the guys over at Forensic Focus, where I normally write digital forensics related stuff, wanted me to promote it there. I couldn’t work out how to do that though: normally we either review books or interview the authors, but I couldn’t review my own book and I didn’t want to interview myself.
Enter Oleg, my co-author and very useful person, who took on more of the book than he’d originally agreed to when I got ill halfway through the process. Today I interviewed him on Forensic Focus about what he does as a day job, how he came to write the book, and what he thinks the most important current challenges are in digital forensics.
Take a look at the interview on Forensic Focus