Executing Windows Command Line Investigations by Hosmer, Bartolomie & Pelli

I met Chet Hosmer at DFRWS in Providence, Rhode Island, earlier this year. Over lunch I explained my upcoming digital forensics book to him, and he was very supportive. When I arrived back in England a copy of one of his books was waiting for me, along with an encouraging note.

Well, the DFIR book project has taken a backseat over the last few months due to me taking on a new psychology of religion research project, but maybe it’ll come back. In the meantime I thought I’d take a look at Chet’s book and write a quick review of it.  Read more

How Do I Fit It All In? Six-Month Roundup

A few months ago, tired of people going “How do you fit it all in?!”, I started a blog series to answer that exact question. It was partly for other people but also partly for me; I wasn’t sure how I fitted it all in either. The answer used to be “I barely sleep” but these days I’m often in bed by 8pm, sometimes significantly earlier, so I knew it wasn’t that.

But apparently I still manage to live many lives and do loads of things. So how do I do it? This week marks week 21 of my ‘How Do You Fit It All In?’ series so I thought I’d go back through them and work out if there’s a direct answer to that question.  Read more

Review: Analyze DI Pro From Griffeye

Those of you who know about my work in digital forensics will probably be aware that I got into the field because I’m very passionate about child protection, so anyone who champions that cause is someone I’m probably going to like. Magnet Forensics has been doing this for years, but recently I became aware of Griffeye, whom I somehow hadn’t heard of before.

A while ago they asked me to review their Analyze DI Pro solution as part of my work over at Forensic Focus, so I did.  Read more

SQLite Forensics by Paul Sanderson

SQLite forensics is an important part of many digital forensic investigations. Most smartphones and computer operating systems use SQLite, with each device often including hundreds of databases. Despite this extreme proliferation, SQLite forensics is often overlooked in conversations about current trends in digital forensics. Paul Sanderson’s book attempts to redress the balance and bring attention to the importance of SQLite forensics. Read more

Some Of My Favourite Digital Forensics Books

I read a lot. I write a lot. I work a lot. Sometimes these things coincide. One of the ways they coincide is through writing books about my day job, for which I also read books other people have written.

Here are a few of my favourite digital forensics books I’ve read over the past few years, which I’d recommend if you’re looking for relevant reading material.  Read more