HITB Magazine is currently seeking submissions for our next issue. If you have something interesting to write, please drop us an email at: editorial (at) hackinthebox (dot) org [email concealed]

TOPICS

Topics of interest include, but are not limited to the following:

* New Attack and Defense Techniques
* Reverse Code Enginee

[ more ]  [ reply ]

I have had a very similar case.
If your network is fast enough i would suggest you do a live image using psexec, dd, netcat, and md5sum.

Obtain a shell on her box using psexec (use a domain admin account), mount a remote samba share under the context of that user, and then dd the PhysicalDisk as no

[ more ]  [ reply ]

I have had to do this in the past.

I simply added a firewall rule that dropped her traffic, and brought the laptop back to my office for "service." Once the drive was imaged, I erased the rule and made up a story about a network driver update for her model causing the problem.

This is of cours

[ more ]  [ reply ]

@solefarmer:

It's been a while since forensics were my daily grind, but I have some thoughts...

Are you a member of the subject's organization? i.e. same company or agency?

If so, your best immediate approach may be going over the wire with AccessData Enterprise (ftk) or a similar tool.

* Cos

[ more ]  [ reply ]

[ Apologies if you receive multiple copies of this announcement. Please
pass it on to your colleagues and students who might be interested in
contributing. ]

Ninth Annual Conference on Privacy, Security and Trust
------------------------------------------------------

July 19-21, 2011
Montreal,

[ more ]  [ reply ]

In those types of situations, I usually walk into the company unknown to
most. Someone with IT typically picks up the person's computer
informing them that it is needed for a couple of hours to perform an
upgrade of some hardware (memory) or software (anti-virus). Then I have
the time to perform t

[ more ]  [ reply ]

Ladies, Gentlemen, and otherwise:

I have a situation whereby I need to obtain an image of an individual's laptop suitable for potential prosecution in a US court; however, I only have a limited window in which to grab the image, and was looking for alternatives in order to not "spook" the poor gu

[ more ]  [ reply ]

New Master's Degree Program with a concentration in Digital Forensics

The Computer Science Department at James Madison University is now
offering a Master's Degree in Computer Science with a concentration in
Digital Forensics. The Digital Forensics concentration combines core
computer science conce

[ more ]  [ reply ]

Hi

Does anybody knows some packing detection tools for ELF files?

thanks

-----------------------------------------------------------------
Certify Software Integrity - thawte Code Signing Certificates
This guide will show you how Code Signing Certificates are used to secure code that can be

[ more ]  [ reply ]

_Managing Large-Scale Systems via the Analysis of System Logs and the
Application of Machine Learning Techniques (SLAML 2011)_

At the ACM Symposium on Operating Systems Principles

October 23-26, 2011

Carcais, Portugal

Important Dates

*

Full paper submission due:* Friday, June 17*

[ more ]  [ reply ]

Hi all!

FYI, I will be teaching a CCE exam preparation course on behalf of Champlain
College on May 9-13, 2011 in Burlington, VT. Please contact me or Cathy
Brotzman (brotzman (at) champlain (dot) edu [email concealed]) if you have any questions.

Secure, online registration by credit card is available by clicking the
"Regis

[ more ]  [ reply ]

Happy 2011 everyone! Just a reminder that the Call for Papers for the
second annual HITBSecConf in Europe is closing on the 18TH OF FEBRUARY!
We've received some awesome submissions so far and the event is really
shaping up nicely.

The event will once again take place at the NH Grand Krasnapolsky i

[ more ]  [ reply ]

On behalf of Det. Cindy Murphy.

Cheers!
/kess

=================================================================
Gary C. Kessler, Ph.D., CCE, CISSP
GARY KESSLER ASSOCIATES
2 Southwind Drive +1 802-238-8913 (mobile)
Burlington, VT 05401 gary.c.kessler (S

[ more ]  [ reply ]