Hacking Exposed Computer Forensics Blog

Daily Blog #70: Sunday Funday 9/1/13

David Cowen August 31, 2013

Hello Reader, It's that time again, Sunday Funday time! For those not familiar every Sunday I throw down the forensic gauntl...

Daily Blog #70: Sunday Funday 9/1/13 Reviewed by David Cowen on August 31, 2013 Rating: 5

Saturday reading

Daily Blog #69: Saturday Reading 8/31/13

David Cowen August 30, 2013

Hello Reader, It's Saturday! 1. We had another Forensic Lunch on Friday, watch it here . We talked about legitimate uses for...

Daily Blog #69: Saturday Reading 8/31/13 Reviewed by David Cowen on August 30, 2013 Rating: 5

Daily Blog #68: Forensic Lunch 8/30/13

David Cowen August 30, 2013

Hello Reader, It's time for another Forensic Lunch! Join us as we talk IR tools with Kyle Maxwell, More extended MAPI fun with ...

Daily Blog #68: Forensic Lunch 8/30/13 Reviewed by David Cowen on August 30, 2013 Rating: 5

deviceclasses understanding

Daily Blog #67 Understanding the artifacts DeviceClasses

David Cowen August 29, 2013

Hello Reader, Tomorrow is the Forensic Lunch, are you going to join us? Click here to RSVP and be notified when the YouTube link ...

Daily Blog #67 Understanding the artifacts DeviceClasses Reviewed by David Cowen on August 29, 2013 Rating: 5

setupapi understanding

Daily Blog #66: Understanding the artifacts setupapi.log/setupapi.dev.log

David Cowen August 28, 2013

Hello Reader, Friday is quickly coming up, have you made plans to spend your lunch hour with us? You can eat while we talk and...

Daily Blog #66: Understanding the artifacts setupapi.log/setupapi.dev.log Reviewed by David Cowen on August 28, 2013 Rating: 5

emdmgmt understanding

Daily Blog #65: Understanding the artifacts EMDMgmt

David Cowen August 27, 2013

Howdy Reader, Another good Sunday Funday come and gone. I want to make these contests fun and accessible for you and for those...

Daily Blog #65: Understanding the artifacts EMDMgmt Reviewed by David Cowen on August 27, 2013 Rating: 5

contest

Daily Blog #64: Sunday Funday 8/25/13 Winner(s)!

David Cowen August 26, 2013

Hello Reader, Another Sunday Funday has come and gone and this week I decided to change things up again. I gave out two questi...

Daily Blog #64: Sunday Funday 8/25/13 Winner(s)! Reviewed by David Cowen on August 26, 2013 Rating: 5

contest

Daily Blog #63: Sunday Funday 8/25/13

David Cowen August 24, 2013

Hello Reader, It's that time again, Sunday Funday time! For those not familiar every Sunday I throw down the forensic gauntl...

Daily Blog #63: Sunday Funday 8/25/13 Reviewed by David Cowen on August 24, 2013 Rating: 5

Daily Blog #62: Saturday Reading 8/24/13

David Cowen August 23, 2013

Hello Reader, It's Saturday? How did that happen. Time for another saturday reading. I've been trying to expand my readin...

Daily Blog #62: Saturday Reading 8/24/13 Reviewed by David Cowen on August 23, 2013 Rating: 5

Daily Blog #61: Forensic Lunch 8/23/13

David Cowen August 23, 2013

Hello Reader, It's time for another Forensic Lunch!

Daily Blog #61: Forensic Lunch 8/23/13 Reviewed by David Cowen on August 23, 2013 Rating: 5

Daily Blog #60: On the business of being in business in the expert business, business

David Cowen August 22, 2013

Hello Reader, We've been going strong, 60 days of blogs. To those of you who have kept up daily I salute you. I've been k...

Daily Blog #60: On the business of being in business in the expert business, business Reviewed by David Cowen on August 22, 2013 Rating: 5

shellbags understanding

Daily Blog #59: Understanding the artifacts ShellBags

David Cowen August 21, 2013

Hello Reader, Another day, another blog. They say if you've done something for two weeks it becomes a habit. Well it's ...

Daily Blog #59: Understanding the artifacts ShellBags Reviewed by David Cowen on August 21, 2013 Rating: 5

jump lists understanding

Daily Blog #58: Understanding the artifacts Jump Lists

David Cowen August 20, 2013

Hello Reader, Another Sunday Funday is behind us and from it I've identified another blog series that need to be written. We ...

Daily Blog #58: Understanding the artifacts Jump Lists Reviewed by David Cowen on August 20, 2013 Rating: 5

contest

Daily Blog #57: Sunday Funday 8/18/13 Winner!

David Cowen August 19, 2013

Hello Reader, Another Sunday Funday behind us and another winning answer given. This week we did a Linux challenge and from the l...

Daily Blog #57: Sunday Funday 8/18/13 Winner! Reviewed by David Cowen on August 19, 2013 Rating: 5

contest

Daily Blog #56: Sunday Funday 8/18/13

David Cowen August 17, 2013

Hello Reader, It's that time again, Sunday Funday time! For those not familiar every Sunday I throw down the forensic gaunt...

Daily Blog #56: Sunday Funday 8/18/13 Reviewed by David Cowen on August 17, 2013 Rating: 5

Saturday reading

Daily Blog #55: Saturday Reading 8/16/13

David Cowen August 16, 2013

Hello Reader, Wait, It's Saturday? Where did the week go? It's time for another Saturday Reading where I list out what I'...

Daily Blog #55: Saturday Reading 8/16/13 Reviewed by David Cowen on August 16, 2013 Rating: 5

forensic lunch

Daily Blog #54: Forensic Lunch 8/16/13

David Cowen August 16, 2013

Hello Reader!, It's Friday and time for another forensic lunch! You can watch it live and ask us questions or the recording later....

Daily Blog #54: Forensic Lunch 8/16/13 Reviewed by David Cowen on August 16, 2013 Rating: 5

Daily Blog #53: The TriForce is now Patent Pending

David Cowen August 15, 2013

Hello Reader, Short one today as I'm trying to get some work done, tomorrow I'll continue our series of understanding...

Daily Blog #53: The TriForce is now Patent Pending Reviewed by David Cowen on August 15, 2013 Rating: 5

lnk files understanding

Daily Blog #52: Understanding the artifacts LNK Files

David Cowen August 14, 2013

Hello Reader, Time to continue the series of understanding the artifacts building up to a deeper understanding of proving u...

Daily Blog #52: Understanding the artifacts LNK Files Reviewed by David Cowen on August 14, 2013 Rating: 5

understanding usnjrnl

Daily Blog #51: Understanding the artifacts USNJrnl

David Cowen August 13, 2013

Hello Reader, I'm going to change tracks this week and focus on a deeper understanding of the USNJrnl and its associated artif...

Daily Blog #51: Understanding the artifacts USNJrnl Reviewed by David Cowen on August 13, 2013 Rating: 5

contest

Daily Blog #50: Sunday Funday 8/11/13 Winner!

David Cowen August 12, 2013

Hello Reader, Wow, there are a lot of OSX and Timemachine loving DFIR people out there! I received a lot of submissions and they a...

Daily Blog #50: Sunday Funday 8/11/13 Winner!

Reviewed by David Cowen on August 12, 2013 Rating: 5

contest

Daily Blog #49: Sunday Funday 8/11/13

David Cowen August 10, 2013

Hello Reader, It's that time again, Sunday Funday time! For those not familiar every Sunday I throw down the forensic gaunt...

Daily Blog #49: Sunday Funday 8/11/13 Reviewed by David Cowen on August 10, 2013 Rating: 5

Saturday reading

Daily Blog #48: Saturday Reading 8/10/13

David Cowen August 09, 2013

Hello Reader, It's Saturday! Hooray! The week is over and fedex pickup ends earlier today meaning you either have extra ti...

Daily Blog #48: Saturday Reading 8/10/13 Reviewed by David Cowen on August 09, 2013 Rating: 5

forensic lunch

Daily Blog #47: Forensic Lunch 8/9/13

David Cowen August 09, 2013

Hello Reader, Going to try something different today and see if I can embed our Forensic Lunch live stream in the blog! Forensic Lunch ...

Daily Blog #47: Forensic Lunch 8/9/13

Reviewed by David Cowen on August 09, 2013 Rating: 5

understanding usbstor

Daily Blog #46: Understanding the Artifacts USBStor

David Cowen August 08, 2013

Hello Reader, No time to finish my Gmail code review so I'm going to continue the understanding the artifacts posts to ...

Daily Blog #46: Understanding the Artifacts USBStor Reviewed by David Cowen on August 08, 2013 Rating: 5

Top Ad unit 728 × 90

Latest News

Daily Blog #70: Sunday Funday 9/1/13

Daily Blog #69: Saturday Reading 8/31/13

Daily Blog #68: Forensic Lunch 8/30/13

Daily Blog #67 Understanding the artifacts DeviceClasses

Daily Blog #66: Understanding the artifacts setupapi.log/setupapi.dev.log

Daily Blog #65: Understanding the artifacts EMDMgmt

Daily Blog #64: Sunday Funday 8/25/13 Winner(s)!

Daily Blog #63: Sunday Funday 8/25/13

Daily Blog #62: Saturday Reading 8/24/13

Daily Blog #61: Forensic Lunch 8/23/13

Daily Blog #60: On the business of being in business in the expert business, business

Daily Blog #59: Understanding the artifacts ShellBags

Daily Blog #58: Understanding the artifacts Jump Lists

Daily Blog #57: Sunday Funday 8/18/13 Winner!

Daily Blog #56: Sunday Funday 8/18/13

Daily Blog #55: Saturday Reading 8/16/13

Daily Blog #54: Forensic Lunch 8/16/13

Daily Blog #53: The TriForce is now Patent Pending

Daily Blog #52: Understanding the artifacts LNK Files

Daily Blog #51: Understanding the artifacts USNJrnl

Daily Blog #50: Sunday Funday 8/11/13 Winner!

Daily Blog #49: Sunday Funday 8/11/13

Daily Blog #48: Saturday Reading 8/10/13

Daily Blog #47: Forensic Lunch 8/9/13

Daily Blog #46: Understanding the Artifacts USBStor

KPMG Advisory

Popular Posts

Blog Archive

Random Posts

Recent Posts

Contact Form

Top Ad unit 728 × 90

Latest News

Social Counter

KPMG Advisory

Popular Posts

Blog Archive

Random Posts

Recent Posts

Contact Form