SOURCE Barcelona
BruCON
EuroTrashSecurity Website

Belgium will have its Own Cybercrime Competence Center?

As I wrote in a previous blog post, I went to the FIC2010 conference last week. One of the talks I attended was about the “2centre” initiative. 2centre (“2c” for “cc”) means “Cybercrime Centers of Excellence Network for Training, research and Education“. Those centers of excellence focus on law enforcement. Having great technicians for forensics [...]

April 3rd, 2010 | Tags: , , , | Category: Belgium, Forensics, Security | Leave a comment

What’s Behind Microsoft COFEE?

It was announced a few days ago: Microsoft COFEE has been leaked on the wild Internet! Microsoft COFEE stands for “Computer Online Forensic Evidence Extractor“. This “forensic swiss army knife” is available for free to police forces around the world to conduct official forensics investigations. Note: It’s reportedly illegal for unauthorized people to download and [...]

November 11th, 2009 | Tags: , , , | Category: Forensics, Software | 6 comments

Secure Amsterdam Workshop 2009 Review

Back from a one-day trip to Amsterdam where I attended the “Secure Amsterdam Workshop 2009” meeting organized by ISC2. This year topic was forensics IT investigations. The first speaker was Matthijs van der Wel from Verizon Business who reviewed the 2009 Data Breach Investigations Report. It was interesting to have “real” examples given by Maathijs [...]

May 12th, 2009 | Tags: , , | Category: Event, Forensics, Security | Leave a comment

Forensics: Reconstructing Data from Pcap Files

Sometimes during forensics investigations, it can be useful to recover deleted or temporary files transferred by users and/or processes with protocols like FTP or HTTP. Let’s see how to achieve this using pcap files! libpcap is an API which provides network packets capture facilities. Very common on Unix, there is also a version for Windows [...]

April 15th, 2009 | Tags: , | Category: Forensics, Security, Software | 2 comments