Forensic 4:cast Awards 2018 â Voting is Open
Lee Whitfield has presented Forensic 4:cast Awards 2018 nominees. Oleg’s book – Windows Forensics Cookbook is no…
Introduction to USB Detective
This video is the next episode of “Introduction to Windows Forensics” series by Richard Davis, and introduces US…
Comments on âWindows Registry Forensic Tool Specificationâ
Maxim Suhanov has published his comments on NIST’s âWindows Registry Forensic Tool Specificationâ. You can find Public…
Windows 10 Time Rules
Timestamps play a very important role in many digital forensic examinations, so it’s very important for any forensic e…
What âthe Last Version of Windowsâ Means for Digital Forensics
In this post Jamey Tubbs, Magnet Software Training Director, shows how the latest versions of Windows 10 destroy digital evi…
Forensic Review with Notepad++
In this post Hoyt Harness writes about how to add Plugin Manager to Notepad++ and make it very extensible and useful for dig…
The Sleuth Kit and Autopsy 4.6.0 have been released
The Sleuth Kit and Autopsy 4.6.0 are available for downloading. Here are the lists of new features: The Sleuth Kit New Commu…
RDP Cache Forensics
As a continuation of the “Introduction to Windows Forensics” series, this video introduces Remote Desktop Protoc…
Investigating Windows Systems
A new book by Harlan Carvey, “Investigating Windows Systems”, has been officially announced, and is available fo…
Carve and recreate VSS catalog with vss_carver
Minoru Kobayashi has presented a tool for carving and recreating deleted VSS at at Japan Security Analyst Conference 2018. T…
