The Security Eunoia

Blogging about Security Auditing, IdM & Access Mgmt, Web App Security etc

Entries Tagged ‘Forensics’

Fighting Botnets with BotHunter

Nov.26, 2008 in Cyber-Crime, Digital Forensics, Featured, IT Law, Security Tools

Aiming to take the fight to the bot herders, a company - SRI International - has released a tool called BotHunter. It is free. The software works by monitoring the communication between compromised hosts on a corporate network and bot-herding computers also known as command & control centres.

BotHunter uses what sounds more like heuristic methods and processes (where detection is based on patterns) or than signatures (where detection is based on known attacks). This is how it works:

Leave a Comment

No warrant, No cryptographic hash

Nov.15, 2008 in Cryptography, Cyber-Crime, Digital Forensics, IT Law, Privacy

A US federal court judge has ruled that taking a cryptographic hash (fingerprinting) of a suspects hard drive constitutes a search and therefore a search warrant should be obtained first.
The judge ruled:
“To derive the hash values of Crist’s [suspect] computer, the government physically removed the hard drive from the computer, created a duplicate image of [...]

Leave a Comment

CAINE - A digital forensic project on Live CD

Nov.15, 2008 in Digital Forensics, IT Law

CAINE - Computer Aided INvestigative Environment -is a digital forensics project based on Ubuntu Hardy Heron. It comes complete with the full complement of Ubuntu’s traditional Gnome interface. On top of the Ubuntu kernel is an assembly of open source computer forensics tools held together by a perl wrapper. Tools included are:

Grissom Analizer
Automated Image & [...]

Comments (4)

  

Welcome

This blog is about Security Monitoring & Auditing, Identity and Access Management, Web Application Security & Pentesting, Cyber Crime, Digital Forensics and everything in between - Too many? Are you kidding?!