Collaborate Disseminate
In this video from DFRWS-EU 2022, Pedro Fernandez-Alvarez describes research focused on the Telegram Desktop client, in particular the client process contents in a Windows system’s RAM.
Session Chair: We are now in the topic of memory f… Continue reading Extraction and Analysis of Retrievable Memory Artifacts From Windows Telegram Desktop Application
Session Chair: So the next speaker is Timothy. It’s going to be online, so Timothy, are you ready?
Timothy: Hi, everyone. So I’m Timothy Bollé, I’m a PhD student at the University of Lausanne. And today I will … Read m… Continue reading Bridging the Gap: Standardizing Representation of Inferences in Diverse Digital Forensic Contexts
Christa: Digital forensics in enterprises increasingly overlaps corporate investigations, e-discovery and incident response, with the result that enterprises themselves must balance data acquisition and retention with employee privacy and cyber… Continue reading Cellebrite’s Monica Harris on Achieving Balance in Corporate Investigations and E-Discovery
Aikaterini: I’m Aikaterini Kanta. I’m a PhD candidate with University College Dublin, and I’m really glad to be here today. I’m going to talk to you about my PhD research. So, about contextual based decryption.
So, the … Continue reading What Can You Tell Us About Your Password? A Contextual Approach
Gaëtan Michelet: So good morning, everyone. Today I will present the project we are working on with Frank Breitinger and Graham Horsman. This project is “Towards a working definition and classification for automation in the context of digital for… Continue reading Towards a Working Definition and Classification for Automation in Digital Forensics
Research published last month covered a wide range of issues in digital forensics, from limitations and challenges to new tools and techniques and lessons for those in higher education.
Digital forensic techniques, now and in the future
The Natio… Continue reading Digital Forensics Research Update: May 2022
Bruce Nikkel: …paper of the session is from Jens-Petter Sandvik and his colleagues at NTNU, and it’s on “Quantifying Data Volatility for IoT Forensics With Examples From Contiki OS.”
Jens-Petter: Yeah. Thank you. So, I’… Continue reading Quantifying Data Volatility for IoT Forensics With Examples From Contiki OS
Bruce Nikkel: Okay, thanks everyone. I hope you enjoyed the break. Welcome to the first session: session one, with the theme of file system forensics. We have two interesting papers in this session. The first one is a systematic … Read mor… Continue reading A Systematic Approach to Understanding MACB Timestamps on Unixlike Systems
Bruce Nikkel: Okay, thanks everyone. I hope you enjoyed the break. Welcome to the first session: session one, with the theme of file system forensics. We have two interesting papers in this session. The first one is a systematic … Read mor… Continue reading A Systematic Approach to Understanding MACB Timestamps on Unixlike Systems
Hans: So our keynote for today. Actually, I ran into Emre (online, of course) Tinaztepe from Binalyze in December. It was an interesting online meeting. I had to understand their technology.
And I’m sure Emre’s going to tell us ab… Continue reading Enterprise Forensics: Traditions vs Reality in Modern DFIR