Live Forensic Acquisition Techniques - Joe Partlow (BSides Tampa 2015) (Hacking Illustrated Series InfoSec Tutorial Videos)

Feel free to include my content in your page via my
RSS feed Follow @irongeek_adc

Help Irongeek.com pay for
bandwidth and research equipment:
Subscribestar or Patreon

Search Irongeek.com:

Affiliates:

Help Irongeek.com pay for bandwidth and research equipment:

Live Forensic Acquisition Techniques - Joe Partlow (BSides Tampa 2015) (Hacking Illustrated Series InfoSec Tutorial Videos)

Live Forensic Acquisition Techniques
Joe Partlow

Forensic engagements typically start with some sort of evidence acquisition of malware or breach activity. Unfortunately most of the time we end up with a just drive image that loses many important artifacts. Many excellent commercial tools exist to pull this live information, but they are expensive and not always thoroughly deployed. In this talk we will go over some helpful methods and items used to quickly acquire digital evidence and share some open source automation scripts we use on a regular basis to assist in the acquisition process.

Back to BSides Tampa 2015 video list

Printable version of this article

15 most recent posts on Irongeek.com:

If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.