Blog

In this version we have Microsoft classifying Google Chrome as a virus, passwords being added to wills and the Metropolitan Police Cybercrime unit saving money for the citizens of the UK. Several tools have been updated and some good reads along with a little levity and training/conferences as well as call for papers.

If you have an item you'd like to contribute to Digital Forensics Case Leads, please send it to caseleads@sans.org.

Tools:

• Sleuthkit 3.2.3 has been released. This will probably be the last release in the 3.2 branch. Lots of new stuff on the 'trunk' that will be released as 3.3.0 in the near future. This release has some minor bug fixes and a few new features.
• SSDeep 2.7 Realeased. You can download aWindows binary or the source code.
• Highlighter v1.1.3 released. You can find it here.

Good Reads:

• Volatility 2.0: Timeliner, RegistryAPI, evtlogs and more by Jamie Levy
• Artifacts created by Nmap/Zenmap by Little Mac
• Forensic Scanner by Harlan Carvey
• Lee Whitfield appeared on the Gadget show and you can read about that here

News:

• One in Ten Brits leave passwords in their will. I do not know about how it works in the UK but what happens when you file that will with your local government? Who has access to it while being stored with the local government and who has access to it after death?
• Microsoft AV nukes Chrome Browser. Not sure how this happens to the 3rd largest player in the browser market.
• Cybercrime Unit saves the UK economy 140 million pounds (219 million USD) in 6 months. This puts the unit on course to exceed its 4 year Harm Reduction commitment.
• Cyber Threats Increase in 2012: Report. The three largest threats are Mobile web browsers, SearchPoisoningand Stolen Cyber Data.

Levity:

• Dilbert about ninja economics.
• BOFH - The Fabinocci sequence, not the Fibonacci sequence.
• Quotes of the Week.

Coming Events:

• G Guard Con, organized by InfraGard and GMIS - Carson City Nevada - October 21st 2011
• SANS Chicago- Chicago, IL - October 23rd - 28th, 2011
• 3rd International ICST Conference on Digital Forensics & Cyber Crime (ICDF2C)- Dublin, Ireland - October 26 - 28th, 2011
• TechnoForensics Conference 2011- Myrtle Beach, SC - October 31st - November 1st, 2011
• Paraben Forensic Innovator's Conference-Park City Utah - November 5th-9th 2011
• SANS Sydney 2011- Sydney, Australia - November 11th - 19th, 2011
• SANS San Francisco 2011-San Francisco, CA - November 14th - 19th, 2011
• SANS San Antonio 2011- San Antonio, TX - November 28th - December 5th, 2011
• SANS London 2011-London, United Kingdom - December 3rd - 12th, 2011
• SANS CDI 2011-Washington, DC - December 9th - 16th, 2011
• SANS Security East 2012-New Orleans, LA - January 17th - 26th, 2011
• Eighth Annual IFIP WG 11.9 International Conference on Digital Forensics -Pretoria, South Africa -January 3rd - 5th. 2012
• DoD Cyber Crime Conference 2012 - Atlanta, Ga -January 20th - 27th, 2012
• SANS Monterey 2012-Monterey, CA - January 30th - February 4th, 2012

Call For Papers:

• 24th Annual FIRST Conference- Due Date - Dec 16th, 2011

Digital Forensics Case Leads is a (mostly) weekly publication of the week's news and events relating to digital forensics. If you have an item you'd like to share, please send it to caseleads@sans.org.

Digital Forensics Case Leads for 20111013 was compiled by Mark McKinnon GCFA, CCE is Principal of RedWolf Computer Forensics where he has written many tools that are used throughout the Computer Forensic Community. You can follow Mark on twitter @markmckinnon.