eForensics_Open_02_2013(1).pdf

(13095 KB) Pobierz

OPEN

VOl. 1 NO. 2

A Practical Approach

To Malware Memory Forensics

DIGITAL FORENSICS 101: CASE STuDy uSING FTK IMAGER

FORENSICS ANALySIS WITH FTK: A CASE STuDy SCENARIO

MEMORy ANALySIS uSING DuMPIT AND VOLATILITy

STEP By STEP ANALySIS OF FACEBOOK

AND TWITTER DATA ON ANDROID DEVICES

POTENTIAL IDENTITy THEFT OVER APPLE’S IOS DEVICES

TALKING ABOuT TECHNO LAW

– INTERVIEW WITH BENJAMIN WRIGHT

LET’S TALK ABOuT SECuRITy

Issue 2/2013 (2) May

1046407686.282.png

1046407686.293.png

1046407686.304.png

1046407686.315.png

1046407686.001.png

1046407686.012.png

1046407686.023.png

1046407686.034.png

1046407686.045.png

1046407686.056.png

1046407686.067.png

1046407686.078.png

1046407686.089.png

1046407686.100.png

1046407686.111.png

1046407686.122.png

1046407686.133.png

1046407686.144.png

1046407686.155.png

1046407686.166.png

1046407686.177.png

1046407686.188.png

1046407686.198.png

1046407686.205.png

1046407686.213.png

1046407686.224.png

1046407686.235.png

1046407686.246.png

1046407686.256.png

1046407686.257.png

1046407686.258.png

1046407686.259.png

1046407686.260.png

1046407686.261.png

1046407686.262.png

1046407686.263.png

1046407686.264.png

1046407686.265.png

1046407686.266.png

1046407686.267.png

1046407686.268.png

1046407686.269.png

1046407686.270.png

1046407686.271.png

1046407686.272.png

1046407686.273.png

1046407686.274.png

1046407686.275.png

1046407686.276.png

1046407686.277.png

1046407686.278.png

1046407686.279.png

1046407686.280.png

1046407686.281.png

1046407686.283.png

1046407686.284.png

1046407686.285.png

1046407686.286.png

1046407686.287.png

1046407686.288.png

1046407686.289.png

1046407686.290.png

1046407686.291.png

1046407686.292.png

1046407686.294.png

1046407686.295.png

1046407686.296.png

1046407686.297.png

1046407686.298.png

1046407686.299.png

1046407686.300.png

1046407686.301.png

1046407686.302.png

1046407686.303.png

1046407686.305.png

1046407686.306.png

1046407686.307.png

1046407686.308.png

1046407686.309.png

1046407686.310.png

1046407686.311.png

1046407686.312.png

1046407686.313.png

1046407686.314.png

1046407686.316.png

1046407686.317.png

1046407686.318.png

1046407686.319.png

1046407686.320.png

1046407686.321.png

1046407686.322.png

1046407686.323.png

1046407686.324.png

1046407686.325.png

1046407686.002.png

1046407686.003.png

1046407686.004.png

1046407686.005.png

1046407686.006.png

1046407686.007.png

1046407686.008.png

1046407686.009.png

1046407686.010.png

1046407686.011.png

1046407686.013.png

1046407686.014.png

1046407686.015.png

1046407686.016.png

1046407686.017.png

1046407686.018.png

1046407686.019.png

1046407686.020.png

1046407686.021.png

1046407686.022.png

1046407686.024.png

1046407686.025.png

1046407686.026.png

1046407686.027.png

1046407686.028.png

1046407686.029.png

1046407686.030.png

1046407686.031.png

1046407686.032.png

1046407686.033.png

1046407686.035.png

1046407686.036.png

1046407686.037.png

1046407686.038.png

1046407686.039.png

1046407686.040.png

1046407686.041.png

1046407686.042.png

1046407686.043.png

1046407686.044.png

1046407686.046.png

1046407686.047.png

1046407686.048.png

1046407686.049.png

1046407686.050.png

1046407686.051.png

1046407686.052.png

1046407686.053.png

1046407686.054.png

1046407686.055.png

1046407686.057.png

1046407686.058.png

1046407686.059.png

1046407686.060.png

1046407686.061.png

1046407686.062.png

1046407686.063.png

1046407686.064.png

1046407686.065.png

1046407686.066.png

1046407686.068.png

1046407686.069.png

1046407686.070.png

1046407686.071.png

1046407686.072.png

1046407686.073.png

1046407686.074.png

1046407686.075.png

1046407686.076.png

1046407686.077.png

1046407686.079.png

1046407686.080.png

1046407686.081.png

1046407686.082.png

1046407686.083.png

1046407686.084.png

1046407686.085.png

1046407686.086.png

1046407686.087.png

1046407686.088.png

1046407686.090.png

1046407686.091.png

1046407686.092.png

1046407686.093.png

1046407686.094.png

1046407686.095.png

1046407686.096.png

1046407686.097.png

1046407686.098.png

1046407686.099.png

1046407686.101.png

1046407686.102.png

1046407686.103.png

1046407686.104.png

1046407686.105.png

1046407686.106.png

1046407686.107.png

1046407686.108.png

1046407686.109.png

1046407686.110.png

1046407686.112.png

1046407686.113.png

1046407686.114.png

1046407686.115.png

1046407686.116.png

1046407686.117.png

1046407686.118.png

1046407686.119.png

1046407686.120.png

1046407686.121.png

1046407686.123.png

1046407686.124.png

1046407686.125.png

1046407686.126.png

1046407686.127.png

1046407686.128.png

1046407686.129.png

1046407686.130.png

1046407686.131.png

1046407686.132.png

1046407686.134.png

1046407686.135.png

1046407686.136.png

1046407686.137.png

1046407686.138.png

1046407686.139.png

1046407686.140.png

1046407686.141.png

1046407686.142.png

1046407686.143.png

1046407686.145.png

1046407686.146.png

1046407686.147.png

1046407686.148.png

1046407686.149.png

1046407686.150.png

1046407686.151.png

1046407686.152.png

1046407686.153.png

www.InfoSecSkills.com

LEAD

PRACTITIONER

Allow

us to

guide

your

CAREER

SENIOR

PRACTITIONER

2013 PUBLIC COURSE SCHEDULE

CISMP

Mar 18-22, Apr 22-26, May 13-17, Jun 10-14,

Jul 8-12, Sep 30 - Oct 4, Oct 14-18, Nov 18-22

PRACTITIONER

PCiBCM

Mar 18-22, Apr 8-12, Apr 22-26, Jun 10-14, Jul 8-12,

Aug 5-9, Sep 16 -20, Oct 14-18, N

Aug 5-9, Sep 16 -20, Oct 14-18, Nov 11-15, Dec 9-13

PCiIRM

Apr 22-26, May 6-10, May 20-24, Jun 3-7, Jun 17-21,

Jul 8-12, Jul 22-26, Aug 5-9, Oct 7-11, Oct 21-25, Nov 4-8,

Nov 18-22, Dec 2-6, Dec 16-20

If you are interested in learning more, get in touch:

contact@infosecskills.com.

1046407686.154.png

1046407686.156.png

Dear Readers!

W e would like to present the latest issue of eForensics Open,featuring

articles written by digital forensics specialists and enthusiasts, experts

in Mobile, Computer, Network and Database Forensics covering all aspects of

electronic forensics, from theory to practice.

For those who already know us it’s the best practical pill consisted of great

articles from our last three issues, for new readers – we hope, a valuable in-

vitation to join our experts community. Taking advantage of this publication,

we would like to present the subjects we were covering in our last few issue,

to give you a chance to see who we are not only through the teasers. We also

would like inform you that we are on the right track and, starting this month,

you can expect 3 issues monthly from eForensics Magazine. We’re giving you

the best, checked, professional, exciting content endorsed by market-leading

companies! No mediocre, half-baked articles! At least not here!

We would also like to thank you for all your feedback and support and invite

you to follow us on Twitter and Facebook, where you can find the latest news

about our magazine and great contests. Do you like our magazine? Like it,

share it! We appreciate your every comment as for us eForensics means you

and your needs, and we are here for our readers. We would be more than

pleased if you could let us know what your expectations towards the maga-

zine are? Which topics are you most interested in? I repeat it everytime but it

is You who shape eForensics!

TEAM

Editors: Joanna Kretowicz

jaonna.kretowicz@eforensicsmag.com

Betatesters/Proofreaders:

Roxana Grubbs, Kishore P.V, Vaman Amarjeet, Mada R

Perdhana, Olivier Calef, Jef Weaver, Massa Danilo,

Craig Mayer, Andrew J Levandoski, Richard Leitz, Lee

Vigue, Elba Stevenson, Shirish Deshpande, Jan-Tilo

Kirchhof, Owain Williams, Dan Dieterle, Sailaja Aduri,

Jonathan Ringler, Shayan Eskandari, Craig Mayer, Larry

Smith

Senior Consultant/Publisher:

Paweł Marciniak

Enjoy!

CEO: Ewa Dudzic

ewa.dudzic@software.com.pl

Joanna Kretowicz

& eForensics Magazine team

Art Director: Ireneusz Pogroszewski

ireneusz.pogroszewski@software.com.pl

DTP: Ireneusz Pogroszewski

Production Director: Andrzej Kuca

andrzej.kuca@software.com.pl

Marketing Director: Joanna Kretowicz

jaonna.kretowicz@eforensicsmag.com

Publisher: Hakin9 Media Sp. z o.o. SK

02-682 Warszawa, ul. Bokserska 1

Phone: 1 917 338 3631

www.eforensicsmag.com

DISClAIMER!

The techniques described in our articles may only be

used in private, local networks. The editors hold no

responsibility for misuse of the presented techniques or

consequent data loss.

4

1046407686.157.png

1046407686.158.png

1046407686.159.png

1046407686.160.png

1046407686.161.png

1046407686.162.png

1046407686.163.png

1046407686.164.png

1046407686.165.png

1046407686.167.png

1046407686.168.png

1046407686.169.png

1046407686.170.png

1046407686.171.png

1046407686.172.png

1046407686.173.png

1046407686.174.png

1046407686.175.png

1046407686.176.png

1046407686.178.png

1046407686.179.png

1046407686.180.png

1046407686.181.png

1046407686.182.png

1046407686.183.png

1046407686.184.png

1046407686.185.png

1046407686.186.png

1046407686.187.png

1046407686.189.png

1046407686.190.png

1046407686.191.png

1046407686.192.png

1046407686.193.png

1046407686.194.png

1046407686.195.png

1046407686.196.png

1046407686.197.png

1046407686.199.png

1046407686.200.png

1046407686.201.png

1046407686.202.png

1046407686.203.png

1046407686.204.png

1046407686.206.png

1046407686.207.png

1046407686.208.png

contents

06

DIGITAl FORENSICS 101: CASE STuDy uSING FTK IMAGER

by Dauda Sule

14

FORENSICS ANAlySIS WITH FTK: A CASE STuDy

SCENARIO

by Omar Al Ibrahim and Majid Malaika

24

INTERVIEW OF CyBER lAWyER FERNANDO M.

PINGuEllO

by Joanna Kretowicz

28

MEMORy ANAlySIS uSING DuMPIT AND VOlATIlITy

by Daniel Dieterle

34

A PRACTICAl APPROACH TO MAlWARE MEMORy

FORENSICS

by Monnappa K A

38

STEP By STEP ANAlySIS OF FACEBOOK AND TWITTER

DATA ON ANDROID DEVICES

by Massimo Barone

42

POTENTIAl IDENTITy THEFT OVER APPlE’S IOS

DEVICES

by Shaikh Javed Hasan Nisar Ahmed

50

TAlKING ABOuT TECHNO lAW – INTERVIEW WITH

BENJAMIN WRIGHT

by Vaman Amarjeet

54

SuCCESSFul PRACTICES FOR BRING yOuR OWN

DEVICE (ByOD), DATA PROTECTION AND yOuR

ORGANIzATION. INTERVIEW: ElIzABETH ROGERS

Marcus Evans

56

lET’S TAlK ABOuT SECuRITy – INTERVIEWS WITH

NETWORK SECuRITy SPEAKERS

www.eForensicsMag.com

5

1046407686.209.png

1046407686.210.png

1046407686.211.png

1046407686.212.png

1046407686.214.png

1046407686.215.png

1046407686.216.png

1046407686.217.png

1046407686.218.png

1046407686.219.png

1046407686.220.png

1046407686.221.png

1046407686.222.png

1046407686.223.png

1046407686.225.png

1046407686.226.png

1046407686.227.png

1046407686.228.png

1046407686.229.png

1046407686.230.png

1046407686.231.png

1046407686.232.png

1046407686.233.png

1046407686.234.png

1046407686.236.png

1046407686.237.png

1046407686.238.png

1046407686.239.png

1046407686.240.png

1046407686.241.png

1046407686.242.png

1046407686.243.png

1046407686.244.png

1046407686.245.png

1046407686.247.png

1046407686.248.png

1046407686.249.png

1046407686.250.png

1046407686.251.png

1046407686.252.png

1046407686.253.png

1046407686.254.png

1046407686.255.png

Plik z chomika:

Inne pliki z tego folderu:

eForensics_Open_02_2013(1).pdf (13095 KB)
eForensics_Open_02_2013.pdf (13095 KB)
eForOpen_2013-01.pdf (8381 KB)

Inne foldery tego chomika:

Zgłoś jeśli naruszono regulamin