Departing on platform 2 .... I seem to have lost my train of thought ..... ever since I started drafting this post I have had to cope with lyrics of Crosby, Stills and Nash's Marrakesh Express floating around in my brain. OK I know I've lost two … [Continue Reading]
USN Change Journal
This post includesa new method to recover USN Change Journal artefacts from unallocatedsome background informationsome commentary on benefitting from the existing work of Lance Mueller and Seth NazzaroBackgroundThe examination of USN Change Journals … [Continue Reading]
Python
As regular readers will know here in the Sausage Factory our primary forensics tool is Encase. From time to time however we need to try out other tools to validate our results. Recently I wanted to utilise two python scripts widely discussed … [Continue Reading]
- « Previous Page
- 1
- …
- 504
- 505
- 506
- 507
- 508
- …
- 513
- Next Page »