Dear Readers, As we know very few people are aware of the extent of the online criminal ecosystem by using advance organised cybercrimes. Where DarkWeb Crime is one of them. DarkWeb is a hub of international crime. Understanding what the DarkWeb is can be a challenge. The dark web is primarily accessible via the Tor…
Category: Digital Forensic
DIGITAL FORENSICS SKILLSETS
Dear Readers, Thanks for reaching out. The need for computer and digital forensics experts is growing significantly due to the increase in cyberattacks, with digital forensics skillsets becoming a critical element in helping IT security teams learn from security incidents. Computer Forensics is the application of scientific examination and data analysis performed on computer storage…
DIGITAL FORENSICS CORNER – 1
Some insightful resources might helpful; 1: Cellebrite Capture the Flag (CTF) write-up specifically links to many of the free, open-source tools, which is worth a read to understand the commands may found in the blog. https://ciofecaforensics.com/2020/11/02/cellebrite-ctf-ruth 2: Evidence Collecting Tools for Fast Forensics Concepts, Process, and Methods for windows-based machines. First Triage/Live Response script (a…
DEFCON DFIR CTF 2019
Defcon DFIR CTF 2019 writeup – Triage VM 🕵️ This year an unofficial Defcon DFIR CTF was provided by Champlain College’s Digital Forensic Association. They created challenges in 5 topics which are available for anyone for a little practice on this site:defcon2019.ctfd.io. The challenges are sorted into the following categories: DFA Crypto Challenge DeadboxForensics Linux…
SMARTPHONE FORENSICS – 2
Greetz to dear reader’s, Digital Forensics (4n6)🕵️‍♂️ itself as one of the emerging domain in information security. And Smartphone forensics is one of them, It is a subset of digital forensics and refers to the investigation and acquisition of artefacts in mobile phones 📲 When we talking about mobile phone forensics then it depends on…
FILELESS MALWARE ATTACKS : INTRO
FILELESS MALWARE ATTACKS Unlike attacks carried out using traditional malware, fileless malware attacks don’t entail attackers installing software on a victim’s machine. This means that there’s NO signature for antivirus software to detect, greatly decreasing the effectiveness of these programs in detecting fileless malware attacks. And these attacks are almost 10 times more likely to…
FORENSICS FRAMEWORKS/MODELS
Forensics “The application of scientific knowledge to legal problems“ So, What is Forensics (4n6) : Answer The aim of this article is to establish a clear guideline of what steps should be followed in a forensic process. Before that must brief about network forensics. It is capturing, recording and analysis of network events in order…
HACKER HACKED INTO FINANCIAL DOMAIN
Kenya: Hackers steal Sh 30billion from Kenya’s financial institutions Team arrested at least 16 suspects including of a former police officer who is also touted as an IT guru, Insiders (KRA-Kenya Revenue Authority People) and a hacker who has been stealing money from local banks electronically in conjunction with a ring of other international hackers….
CYBERCRIMINAL: MINDSET DRIVES BEHAVIOR
Quick Look: Psychology of an Eastern European Cyber-Criminal Sharing one riveting stuff regarding criminal mindset. The usual conversation about Eastern European cyber-criminals does not differentiate them from criminals in other regions or address how they perceive the world differently. This disconnect makes it difficult to bring wrongdoers to justice and leads to breach after breach. We…
BANGLADESH BANK HEIST 2016 🕵️
Updated on 10 Feb 2019 In 2016, it was determined North Korea was linked to the $81 million Bangladesh Cyber Heist. We first reported on this incident in May of that year and surmised it was a preventable attack. Our determination later proved correct as it turns out the institution knew they were unprepared but didn’t get…
CHALLENGES IN MOBILE FORENSICS
One of the biggest forensic challenges when it comes to the mobile platform is the fact that data can be accessed, stored, and synchronized across multiple devices. As the data is volatile and can be quickly transformed or deleted remotely, more effort is required for the preservation of this data. Mobile forensics is different from…
The Vigilante Who Hacked Hacking Team
Read about ethics of hacking, what is important in the world for “Phineas Fisher” and the choices we make. Hacker who hacked ‘The Hacking team’ The hacker who stole reams of secret documents from the controversial surveillance company Hacking Team has come forward to explain how he did it and why. In a lengthy post…
SPYING ON ANDROID USERS
Who Is Spying On Android Users, Why Do They Do It And What Are They Doing With The Data?  If you’ve been following the news, you may already know about the many cases where companies, big and small, were caught spying on their users. It might appear that just about everyone making a phone or an…
OVERVIEW OF DIGITAL FORENSICS
Cyber incidents are fast moving and increasing in number and severity. When a cyber incident occurs, the attacked enterprise responds with a set of predetermined actions. Applying digital forensics to aid in the recovery and investigation of material on digital media and networks is one of these actions. Digital forensics is the “process of identifying,…
EMAIL FORENSIC ANALYSIS TECHNIQUES
TIPS FOR ADVANCED EMAIL CONTENT ANALYSIS TECHNIQUES As we know almost just doing data extraction & reporting, not forensics. Digital forensics is a branch of forensic science focusing on the recovery and investigation of raw data residing in electronic or digital devices. The goal of the process is to extract and recover any information from a…
How is Extortionware different from Ransomware?
For more: Â https://goo.gl/VYdsNC Responding to DDoS Extortion: 7 Steps With the threat of DDoS extortion attacks on the rise, here are seven steps that security experts recommend organizations pursue to defend themselves against related threats and attacks: React: Take any extortion threat seriously. Immediately “spin up” an incident response team to manage your organization’s response…
HACKERS COMPROMISE GLOBAL BANKING SYSTEM
Criminals can alter banks’ most sensitive data, allowing fake money transfers and credit card fraud. The global banking system has been compromised by cyber-criminals who have demonstrated they have high-level access that gives them nearly full control to alter data and steal from banks, according to an expert who has been investigating them on the…
MIRAI IoT Botnet at a Glance
Found an interesting article, originally posted on Fortinet. Ever since the Mirai DDoS attack was launched a few weeks ago. Mirai, the infamous botnet used in the recent massive distributed denial of service (DDoS) attacks against Brian Krebs’ blog and Dyn’s DNS infrastructure, has ensnared Internet of Things (IoT) devices in 164 countries, researchers say….
MOBILE DEVICE FORENSIC SOP & GUIDELINE – 1
Mobile device forensics is a branch of digital forensics relating to recovery of digital evidence or data from a mobile device under forensically sound conditions. There is growing need for mobile forensics due to several reasons and some of the prominent reasons are: Use of mobile phones to store and transmit personal and corporate information Use of mobile phones in online transactions…
OPEN SOURCE VAPT & DFIR TOOLS
List of some tools : For  complete tools descriptions : DFIR/VAPT Tools
DIGITAL FORENSICS (4n6) | CYBER OF THINGS (CoT) 