Dan Pullega has published a useful “forensics quickie” in his blog. In the post he shows how to access and copy files out of Volume Shadow Copies (VSCs) from live systems remotely.
-
Defcon DFIR CTF 2018 Open to the Public
David Cowen has posted Defcon DFIR CTF 2018 images and questions at his blog. It’s t… -
IoT 4n6: The Growing Impact of the Internet of Things on Digital Forensics
Gartner predicts that by 2020 there will be more than 20 billion connected “things,&… -
The Sleuth Kit 4.6.2 and Autopsy 4.8.0 released
The new versions of the Sleuth Kit and Autopsy have been released. You can already downloa…
Load More Related Articles
-
Knowledge is Power! Using the macOS/iOS knowledgeC.db Database to Determine Precise User and Application Usage
Sarah Edwards has posted her research of knowledgeC.db database. This database can be foun… -
Smartphone Acquisition: Adapt, Adjust and Get Smarter!
Heather Mahalik has posted about a list of recommendations on iOS and Android-based smartp… -
Beginner Malware Reversing Challenges
The purpose of these challenges is to familiarize beginners with common malware techniques…
Load More In Tips & Tricks
