Colapse all |
Post message
Re: Re: P2V - Live Forensics 2011-02-21 paul ha cked net I have had a very similar case. If your network is fast enough i would suggest you do a live image using psexec, dd, netcat, and md5sum. Obtain a shell on her box using psexec (use a domain admin account), mount a remote samba share under the context of that user, and then dd the PhysicalDisk as no [ more ] [ reply ] Re: P2V - Live Forensics 2011-02-17 synja synfulvisions com I have had to do this in the past. I simply added a firewall rule that dropped her traffic, and brought the laptop back to my office for "service." Once the drive was imaged, I erased the rule and made up a story about a network driver update for her model causing the problem. This is of cours [ more ] [ reply ] FW: P2V - Live Forensics 2011-02-18 Shannon.ONeil (Shannon ONeil target com) @solefarmer: It's been a while since forensics were my daily grind, but I have some thoughts... Are you a member of the subject's organization? i.e. same company or agency? If so, your best immediate approach may be going over the wire with AccessData Enterprise (ftk) or a similar tool. * Cos [ more ] [ reply ] Privacy, Security, Trust (PST 2011) - Call for Papers 2011-02-19 Serguei A. Mokhov on behalf of PST-11 (mokhov cse concordia ca) [ Apologies if you receive multiple copies of this announcement. Please pass it on to your colleagues and students who might be interested in contributing. ] Ninth Annual Conference on Privacy, Security and Trust ------------------------------------------------------ July 19-21, 2011 Montreal, [ more ] [ reply ] RE: P2V - Live Forensics 2011-02-18 Greg Kelley (gkelley vestigeltd com) In those types of situations, I usually walk into the company unknown to most. Someone with IT typically picks up the person's computer informing them that it is needed for a couple of hours to perform an upgrade of some hardware (memory) or software (anti-virus). Then I have the time to perform t [ more ] [ reply ] P2V - Live Forensics 2011-02-15 solefarmer gmail com (10 replies) Ladies, Gentlemen, and otherwise: I have a situation whereby I need to obtain an image of an individual's laptop suitable for potential prosecution in a US court; however, I only have a limited window in which to grab the image, and was looking for alternatives in order to not "spook" the poor gu [ more ] [ reply ] Re: P2V - Live Forensics 2011-02-22 Dave Howe (DaveHowe pentest googlemail com) (1 replies) Re: P2V - Live Forensics 2011-02-28 Paul Schmehl (pschmehl_lists tx rr com) (1 replies) Re: P2V - Live Forensics 2011-02-19 quark quark (quark maillist gmail com) (1 replies) New degree concentration in Digital Forensics 2011-02-02 Florian Buchholz (buchhofp jmu edu) New Master's Degree Program with a concentration in Digital Forensics The Computer Science Department at James Madison University is now offering a Master's Degree in Computer Science with a concentration in Digital Forensics. The Digital Forensics concentration combines core computer science conce [ more ] [ reply ] Does anybody knows packing detection tools for ELF files? 2011-02-02 armin bugcon org (1 replies) Hi Does anybody knows some packing detection tools for ELF files? thanks ----------------------------------------------------------------- Certify Software Integrity - thawte Code Signing Certificates This guide will show you how Code Signing Certificates are used to secure code that can be [ more ] [ reply ] Re: Does anybody knows packing detection tools for ELF files? 2011-02-05 macubergeek (macubergeek comcast net) CCE exam preparation course, Burlington, VT, May 9-13 2011-01-31 Gary C. Kessler (gck garykessler net) Hi all! FYI, I will be teaching a CCE exam preparation course on behalf of Champlain College on May 9-13, 2011 in Burlington, VT. Please contact me or Cathy Brotzman (brotzman (at) champlain (dot) edu [email concealed]) if you have any questions. Secure, online registration by credit card is available by clicking the "Regis [ more ] [ reply ] [HITB-Announce] Reminder: HITB2011AMS - Call for Papers closes on the 18th of Feb 2011-01-31 Hafez Kamal (aphesz hackinthebox org) Happy 2011 everyone! Just a reminder that the Call for Papers for the second annual HITBSecConf in Europe is closing on the 18TH OF FEBRUARY! We've received some awesome submissions so far and the event is really shaping up nicely. The event will once again take place at the NH Grand Krasnapolsky i [ more ] [ reply ] |
Privacy Statement |
TOPICS
Topics of interest include, but are not limited to the following:
* New Attack and Defense Techniques
* Reverse Code Enginee
[ more ] [ reply ]