Into The Boxes: Issue 0×1
It is time for the second edition of Into The Boxes – Digital Forensics and Incident Response Magazine.
This time we have contributions from Scott Burkhart and Chris Pogue. This is another diverse issue covering a wide range of digital forensic and incident response topics. More specifically:
MAC Box: Introduction to Plist Files by Scott Burkhart
Want to know how OSX maintains its configurations? Scott Burkhart breaks down the .plist configuration files and how they can be used during data analysis.
Squawk Box: The Simple Truth – Chris Pogue
Chris Pogue provides us some insights into the world of PCI breach incident response.
Software Box: Poorcase: Split Image Reconstruction – Don C. Weber
Richard Harman has released a new tool for combining split images for data analysis with tools that cannot inherently handle split images.
Windows Box: Registry Analysis and Geolocation – Harlan Carvey
Harlan Carvey explains how Windows Registry analysis can be leveraged to perform geolocation and establish information about the different physical locations a system has been used.
Hardware Box: Super DriveLock Review – Don C. Weber
Don C. Weber reviews Intelligent Computer Solutions’ Super DriveLock, a multi-interface write blocker which can be used in a digital forensic tower or taken on the road.
As always, please let us know how you feel and provide us with recommendations and article submittals for future ITB efforts. We look forward to your comments and blog posts about these subjects.
Go forth and do good things,
Don C. Weber