本エントリは This Week in 4n6 (FourAndSix=Forensics) で紹介された各記事の冒頭を表示し、チェックする記事をザッピングするために自動生成＆投稿したものです。4n6 は こちら からご確認いただけます。

FORENSIC ANALYSIS

Digital Forensics Myanmar

• eCDFP (Module-6) (Window Forensics) (Part – 5 )

eCDFP (Module-6) (Window Forensics) (Part - 5 ) Get link Facebook Twitter Pinterest Email Other Apps August 02, 2024 Shortcut (.LNK) File တွေကို Window Operating System ကနေ .EXE File မဟုတ်လဲ Create ပြုလုပ်နိုင်သလို (Example Word File) User ကနေလဲ Create ပြုလုပ်နိုင်ပါတယ်။ User ကနေ Shortcut (.LNK) File တွေကို Create လုပ်တယ်ဆိုတာက File/Folder/Application တစ်ခုခုကို အလွယ်တစ်ကူ Access လုပ်နိုင်အောင်ပြုလုပ်တာဖြစ်နိုင်ပါတယ်။ User Interest ဖြစ်တဲ့အရာတစ်ခုခု လဲဖြစ်နိုင်ပါတယ်။ Jump List ဆိုတာက User ကနေ Fr...

Dr. Neal Krawetz at ‘The Hacker Factor Blog’

• Reversing Samsung Metadata

Forensafe

• Investigating Android Firefox

02/8/2024 Friday Android Firefox is an open-source web browser that was developed by Mozilla. Android Firefox is known and praised for its security and privacy-concerned approach. The web browser is available for desktop (Windows, macOS and Linux) and for mobile devices (Android and iOS). Digital Forensics Value of Android Firefox Artifacts People around the world rely primarily on the Internet as a source of information. At the same time, web browsers are one of the most basic and essential app...

Justin De Luna at ‘The DFIR Spot’

• RDP Bitmap Cache – Piece(s) of the Puzzle

RDP Bitmap Cache - Piece(s) of the PuzzleIn the DFIR world, we often talk so much about typical artifacts and various logs when conducting an investigation. Sure, obviously things such as Prefetch, LNK files, Jumplists, Shellbags, UserAssist, etc. are important, but DFIR is about thinking outside of the box and having that “investigative mindset”, right? With this said, let’s talk about something that you might not be collecting or analyzing when performing host-based analysis. RDP Bitmap Cache!...

Kevin Stokes

• Plaso Super Timelines in Splunk

Magnet Forensics

• See the story of your geolocation data with Magnet Review’s Worldmap View

Magnet Review empowers your investigative team members – both inside and outside your organization – to securely collaborate and review digital evidence from any of your data sources, and from anywhere in the world. One critical source of digital evidence in today’s investigations is geolocation data. Examination of mobile devices like smartphones can yield a wide variety of GPS-source information and this information can be invaluable to investigators, enabling them to track suspects and victim...

Axoloth at System Weakness

• TryHackMe | Forensic Imaging | WriteUp

James McGee at The Metadata Perspective

• Sleepless in Cupertino: A Forensic Dive into Apple Watch Sleep Tracking

Sleepless in Cupertino: A Forensic Dive into Apple Watch Sleep Tracking Reviewing Apple Watch Sleep App in Anticipation of the Vitals App How’s your sleep been lately? Currently, there are numerous sleep tracking and monitoring devices available to track, monitor, and quantify sleep patterns for users actively seeking to improve their sleep or just casually review sleep periods. For Apple users who also own an Apple Watch the solution may be on your wrist already. Sleep tracking, as recorded nat...