Download - PFIC - Paraben's Forensic Innovations Conference

Recommendations

Info

Time: Sunday, 4:00 PM – 5:30 PM Track: Lab Track C Room: Uri Presenter: James Eichbaum, MicroSystemation Title: Android Forensics With nearly 70% of the worldwide smartphone market share, Android devices are landing in forensic labs with much more frequency. This hands on lab will provide examiners with the skills necessary to successfully extract and analyze data from Android devices. Students will learn rooting techniques, how Android stores geo-location data, and how Apps can be an evidentiary goldmine. Innovations Track Monday, November 5th, 2012 Time: Monday, 8:00 AM – 9:00 AM Track: Innovations Track Room: Davos Presenter: Nick Cavalancia, Spectorsoft Title: User Activity Monitoring: How Monitoring Digital Behavior is More and More Important from an Investigation and Forensics Standpoint Forensics and security professionals used to focus their attention on the device. Then, increasingly, the network. After that, the perimeter. And, most recently, the application. But, change is the constant. Most people now have multiple computing devices. People access systems, data, and applications from diff erent ingress points. The digital life increasingly consists of a blend of work and personal time, and work and personal activity. And, cloud based off erings have truly arrived. What does this add up to? More and more control in the hands of the end-user. So, the ability to see and analyze people’s digital behavior is now front and center. Attend this session to learn how User Activity Monitoring provides unique opportunities to solve Forensics, Investigations, and IT Risk problems more comprehensively, and in more automated, and cost-eff ective ways than previous, legacy solutions and manual processes ever could. See what activity data can show you- in contrast to threat data, vulnerability data, or post-factum alert data. See how near real-time alerting around digital activity enables both defense and remediation. And fi nally, review real-world case studies, the next phase of maturity for UAM solutions, and the associated innovations and predictions. Time: Monday, 9:00 AM – 10:00 AM Track: Innovations Track Room: Davos Presenter: Allen Atamer, LTAS Technologies Title: Exploiting online classifi eds as a source for OSINT Increase your awareness of the role of online classifi eds in fraud / crime / underground business overview of free and off -the-shelf tools and tips for investigating suspicious online classifi ed ads understand how criminals can circumvent investigative searches introduction of our Harmari Report service and its benefi ts in online investigation.
Time: Monday, 10:30 AM – 11:30 AM Track: Innovations Track Room: Davos Presenter: Mike Raggo, MobileIron Title: Wireless Incident Response & Forensics – Latest Techniques Current attack vectors indicate that wireless attacks are now more focused on wireless clients rather than wireless infrastructures. As wireless access points, wireless switches, and wireless defense technologies have improved, wireless end-users have now become the new low-hanging fruit. Ubiquitous mobility is now center stage and with that comes a plethora of vulnerabilities introduced by mobile computing devices including Wi-Fi enabled smartphones. This presentation will explore attacks focused on obtaining end-user data, wireless network credentials, and corporate network infi ltration. Intrusion techniques as well as extrusion techniques will be reviewed including: Windows Virtual Wi-Fi, AirPlay, and mobile hotspots. Time: Monday, 10:30 AM – 11:30 AM Track: Innovations Track Room: Davos Presenter: Mike Raggo, MobileIron Title: Wireless Incident Response & Forensics – Latest Techniques Current attack vectors indicate that wireless attacks are now more focused on wireless clients rather than wireless infrastructures. As wireless access points, wireless switches, and wireless defense technologies have improved, wireless end-users have now become the new low-hanging fruit. Ubiquitous mobility is now center stage and with that comes a plethora of vulnerabilities introduced by mobile computing devices including Wi-Fi enabled smartphones. This presentation will explore attacks focused on obtaining end-user data, wireless network credentials, and corporate network infi ltration. Intrusion techniques as well as extrusion techniques will be reviewed including: Windows Virtual Wi-Fi, AirPlay, and mobile hotspots. Time: Monday, 12:30 PM – 2:00 PM Track: Innovations Track Room: Davos Presenter: David Cowen, G-C Partners LLC Title: Anti Anti-Forensics The NTFS $Logfi le is a gold mine of forensic data that has never been understood well. Tomes from a variety of authors and open source development groups have attempted to explain its usage and changes for those use in writing to the NTFS fi le system, but we’ve never seen any research on how to pull apart and read the $logfi le beyond carving MFT fi le records from it. In this presentation we will show to use the $Logfi le to fi nd out when: Timestamps have been changed, What the name of a fi le was before it was renamed, Details on when a fi le was created, Details on when a fi le is deleted, timestamp recovery from $logfi le entries and how to determine how many diff erent systems have written to external media. In short you can now; roll back the metadata from a wipe, fi nd more deleted fi les with their metadata, recover wiped fi les that were resident in the mft, recover fi les that have been timestomped and fi nd fi les hidden by rootkits and malware or were never committed to disk.
Page 3 and 4: Basel Innovations Track 8:00 AM - 1
Page 5 and 6: Davos Innovations Track Sunday, Nov
Page 7 and 8: Davos Innovations Track 8:00 AM - 9
Page 9 and 10: Davos Innovations Track 8:00 AM - 9
Page 11 and 12: Morning Bootcamp Abstracts Saturday
Page 13 and 14: Time: Saturday, 1:00 PM - 5:00 PM T
Page 15 and 16: Time: Sunday, 2:00 PM - 3:30 PM Tra
Page 17 and 18: Visualization of Digital Forensic D
Page 19 and 20: Time: Sunday, 12:30 PM - 2:00 PM Tr
Page 21: Log Analysis and Data Visualization
Page 25 and 26: Time: Monday, 10:30 AM - 11:30 AM T
Page 27 and 28: Time: Monday, 2:00 PM - 3:30 PM Tra
Page 29 and 30: Lab Track B Monday, November 5th, 2
Page 31 and 32: Time: Monday, 9:00 AM - 10:00 AM Tr
Page 33 and 34: Forensics Track Tuesday, November 6
Page 35 and 36: Lab Track C Tuesday, November 6th,
Page 37 and 38: Dyer Bennett, SIRCHIE Dyer Bennett
Page 39 and 40: Christopher Currier, Passware & Sum
Page 41 and 42: Jon Hansen, H-11 Digital Forensics
Page 43 and 44: William Matthews, Southwest Regiona
Page 45 and 46: Meghana Reddy, PwC Meghana is an Ex
Page 47 and 48: Stephanie is a member of the Intern
Page 49: Donald Wochna, Vestige Ltd. Author

Download - PFIC - Paraben's Forensic Innovations Conference

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?