R3B005t

Yeah redline has potential I hate the .net requirement and keep in mind this is the first release of the product.. Things I have on my Ironkey-Sysinternals suite, mir standalone scan (we do have an appliance but you never know when you need to do the odd offline capture) I tossed redline on there as well as a few other custom goodies.  Only beef…[Read more]

Sil what are you thoughts on DFF? I’m playing around with it and find it to be pretty robust so far, I’d recommend kamikaze go for the Mandiant Memorize and the Memorize viewer initally till he gets more comfortable with the more advanced memory forensic tools.  There really is no end to memory analysis kit out there, if your comfortable with nix…[Read more]

Sil you are a mad genius, if this is what you get into when your bored I can only imagine what your capable of when properly motivated  😉

Sil what version of FTK are you using? Have you gotten your hands on the latest release?  Just wondering what your impressions are..  BTW I love the forensic challenges, hard to stay on top of all of em  ;D

Well there goes my faith in EC council, I was going to do a write up on the sheer amount of padding in their course ware but looks like someone beat me to the point.  I can’t begin to figure out how EC took such a bad turn.  It seems that the organization needs to take a long hard look at its materials.  Untill I hear otherwise I’m going to re…[Read more]

Excellent, keep us updated!

@g00d_4sh wrote:

Yeah, I’m currently in my 2nd time through college.  About 10 years ago I majored in Intercultural Studies, with a minor in World Religions.  Try finding a major specific job with those!  Hehe…   Now I’m just working steadily toward a BS in Computer Science, and working full time.  No spawn though, which makes it simpl…

[Read more]

Ah yeah I’m on both of those forums and I’d have to agree with you!  😉

@Joshsevo wrote:

Has anyone recently taken these courses.  I am about to drop the money to pay for the first one and then in May pay for the second one.

I have been reading over the syllabus for these courses and I have actually been able to speak to the instructor that will be teaching the courses as they are on the Forensics forum that I am…

[Read more]

Ahh the age old problem that every IT department faces, passwords.  The complexity requirements at my current place of employment are I’m sure the bane of the helpdesk.  I’d love to go to passphrase’s however I’m sure we wouldn’t be able to due to the strict gov regs that companies in my industry face.  We are actually looking at beefing up se…[Read more]

@cd1zz wrote:

@R3B005t

How are you handling the iTunes issue? With the iOS exploit that is now in Metasploit, we can now pull all that juicy info right from the device, as long as itunes is installed on the box.

Simple we dont allow iTunes to be installed in the environment.  As part of our user acceptance policy for the iPhones we state…[Read more]

Sans Forensic classes are excellent from what I’ve heard, I’m hoping once I finish my AAS in Computer Forencis in Oct to be able to get work to shell out to send me to some of the training.  I live in NVA so Sans HQ isn’t tooo far away from me.  Josh what forum are you on?

Thats not true at all, in fact if you search apple’s support site they strongly recommend antivirus software on their machines.  Apple has never said AV was unnecessary.

Android while a great device os is open sourced, the major issue here is that there is absolutely 0 quality control by google over the Android Marketplace.  This makes it extremely easy to introduce malicous software onto the device and potentially back into you environment.  That reason alone was enough for me to make the Android a no go in my e…[Read more]

Don, seriously how do youwork these magical deals? 

Just got word it’s due for release in five days wooot

http://www.backtrack-linux.org/backtrack/backtrack-5-release-in-5-days/

Options Sil options, sending a netbook to someone in a corporate environment is a great plan and all and the free iPad is even better!  I’ll give you that a small handful of companies are wising up and implementing NAC’s these little guys are still great tools and one can never have too many tools in ones arsenal. 

If the person who stole your macbook is like most college kids and your desperate hit up the popular free wifi spots in town and do some monitoring, you know your mac address so thats half the battle, I would however report it to the cops.  If this was me back in my college days I’d have already gone to all of the suspsects dorm rooms/apts with…[Read more]

Yeah Jason Street clued me in on them during source boston.  I have yet to make it out to a con gonna have to get my act together one of these days.

I have owned every version of the iphone and have used and analyzed a majority of the android devices on the market (part of the job).  Data collection is nothing new, first of all Google’s android market place is rife with applications that have malicious backdoors installed in them.  Not too long ago someone finally took a good hard look at t…[Read more]