About Me
I am a forensic analyst with Code-X Technologies. I am also the primary developer for the LibForensics project, an open source Python framework for developing digital forensics applications. In addition to computer forensic examinations, I have performed research in areas relating to information security, specifically digital forensics and functional code analysis (a.k.a. reverse engineering).
{ 6 comments… read them below or add one }
Hi
I have added your site as a link on the F3 website (www.f3.org.uk).
Ted
Cool, thanks!
Hello Mike, i’ve been reading your blog and i found it very interesting.
I am new to the forensic analysis, and i wanted to ask a technical question.
How you can ensure that if someone changes the BIOS clock to the past(e.g 2005) and plants a document is visible ?
I use Encase Forensic,i have read several documents, and the only solution i found to ensuse the above is from the windows event viewer.
Do you have any other suggestions ?
Thanx in advance,
Dimitris
I work as a computer tech at a University, and have been approached by a faculty that wishes to locate evidence that contains time/date stamp and log of accessing a networked drive with a generic log on provided by the faculty to all students in the class. Could you give me a hint towards what log files I might examine? I’ve been pouring through the logs I can find, and do not see anything that would offer that specific information.
Thanks,
Paul
Hi Mike,
I’ve added a link to your blog to the Digital Forensics Association website (ww.digitalforensicsassociation.org) in the Resources section. We’re a brand new professional association, and I’m building out the website now. I’ve enjoyed your blog for some time, and I’m glad to include it.
Thanks,
Suzanne
Hi Mike,
I got some question for you related to my project. Can I ask you by email? I didn’t found the link says “contact me” or other information about your email.
Thanks,
Danny