Here are some tools you can try:

ExifTool
McAfee FileInsight
FileAlyzer

Try them and see what you can get.

I'm still waiting for the answers. Don, what happen here?

There's a good book on coding for penetration tester that was released last week. Among other scripting languages that the book talks about, Perl is included. This is a must read and I'm definitely going to get my hands on it.

http://www.amazon.com/Coding-Penetration-Testers-Building-Better/dp/1597497290

 

Thanks for the info.

I'm still waiting for the results. When are we going to found out? I can't wait to see the answers.

It's expensive! I'm trying to see if my employer is willing to pay for the FOR610 course.

Yeah, I like Memorize and you can make it portable too. I added it to my Iron Key USB flash drive as part of my tool kit. You just have to make sure to run it once from your flash drive with write-mode enable to let it copy some additional files.

Also, last week I had the chance to play around with Redline. I like it except that you need .Net Framework version 4 or greater to use it on your Windows machine. Currently, it's very slow in analyzing memory dumps and it doesn't work well with Windows 7. But hey, it's new and I'm sure that Mandiant will improve it and make it better. I do recommend for beginners to take look at Redline and use it because it walks you through with explaination on quickly detecting suspicious or potentially malicious processes and etc.   

Btw, Don, I can't thank you enough for the Iron Key flash drive. I can't live without it! Since I can unlock the Iron Key in read-mode only, it's perfect for incident response and malware forensic. You don't have to worry about your flash drive getting infected. I know it has been more than a year that I received my Iron Key, but I just wanted to say thanks again.

Fyi, this is nothing new. Check out the following blog:

https://alexlevinson.wordpress.com/2011/04/21/3-major-issues-with-the-latest-iphone-tracking-discovery/

Interesting info:

http://www.f-secure.com/weblog/archives/00002145.html

http://gigaom.com/2011/04/21/researcher-iphone-location-data-already-used-by-cops/?utm_source=social&utm_medium=twitter&utm_campaign=gigaom

He he, nice... I thought I had it there for a while...

Excellent post. Hey sil, thanks for the info.

For the rest of the story go here:

http://www.forbes.com/feeds/globenewswire/2010/07/12/ligatt_security_international_and_gregory_evans_sue_alleged_196136.html

This is ridiculous, something must be done!

Definitely going to add this book to my wish list.

Check this story out:

http://digg.com/d31WOcy?t


This article is a must read, especially for security folks like us whom we have the tendency to download free security tools available on the Internet. What is funny is, that this security guy found this rogue security tool (supposedly used by the FBI) thanks to an article posted in TechCrunch.

This just came out today:


Download it here.

Hello everyone,

I'm looking for any EH-Net members interested in joining Empire Avenue. It's basically a virtual online influence stock exchange that utilizes people and websites as stock or ticker symbols. Your stock value depends on your online influence which comes directly from using Twitter, Facebook and your own website.

More info in my blog: http://www.kelvinlomboy.com/create-your-empire-by-investing-in-your-friends

I consider Empire Avenue a great tool to expose yourself or your website to the world. It's currently in beta and you can only register thru an invite only. I have 2 invites left so whoever is intrested just PM me your email. I have an additional invite for Don if he is intrested and would like to promote EH-Net in Empire.

So far, 4 ethical hackers or security dudes, including myself are participating: Dave Marcus e(DMARC) from McAffee, Dan Sherman e(DRAGON), Aviv Raff e(RAFF) and I e(KELVIN).