REAPER Preview

Project: Rapid Evidence Acquisition Project for Event Reconstruction (REAPER) Preview
<div class="p1">Purpose: A forensic boot CD that quickly and automatically extracts a preview of a suspect system</div><div class="p1">Status: Not active (superseded by the ATOM project)
License: GNU GPLv3</div><div class="p1">Developer(s): Joshua James</div><div class="p2">
</div><div class="p1">More information:</div><div class="p1"><div style="text-align: left;">A proof of concept has been created, but has not been maintained. The source is available via the REAPER Forensics project at Sourceforge.</div></div><div class="p2">
</div><div class="p1">REAPERPreview is a bootable USB/CD that automatically extracts a preview of images, searches for keywords (based on keyword lists), and conducts hash analysis using the suspect’s hardware. The focus of the project was on conducting common digital investigation tasks as fast as possible to help make informed decisions on-scene, at an airport (customs), or even before conducting a time-consuming full analysis in a laboratory.</div><div class="p2">
</div><div class="p1">The functionality of REAPERPreview has been incorporated into the easily-configurable ATOM framework.


Links:
<ul><li>Presentation in Sleuthkit and Open Source Digital Forensics Conference 2011</li><ul><li>http://www.basistech.com/about-us/events/open-source-forensics-conference/2011/presentations/</li></ul><li>UCD REAPER project page</li><li>REAPER Forensics Sourceforge project page</li></ul></div>

~1 min read

Rapid Evidence Acquisition Project for Event Reconstruction

Project: Rapid Evidence Acquisition Project for Event Reconstruction (REAPER)
Purpose: To fully automate the acquisition, processing and analysis phases of a digital investigation.
Status: Not active (superseded by the ATOM project)
License: GNU GPLv3
Developer(s): Joshua James

More information:
A proof of concept has been created, but has not been maintained. The source is available via the REAPER Forensics project at Sourceforge.

REAPERlive is a bootable USB/Firewire drive that acquires a suspect system (using the suspect’s hardware) to the external USB/Firewire drive. The acquired image is then processed with the Open Computer Forensics Architecture.

REAPER Desktop is a bootable Debian Live CD that automatically creates the REAPERlive USB/Firewire drive.

The functionality of REAPERlive has been incorporated into the easily-configurable ATOM framework.


Links:
<ul><li>Presentation in Sleuthkit and Open Source Digital Forensics Conference 2011</li><ul><li>http://www.basistech.com/about-us/events/open-source-forensics-conference/2011/presentations/</li></ul><li>UCD REAPER project page</li><li>REAPER Forensics Sourceforge project page</li></ul>

~1 min read

Digital Forensics Summer School

The UCD Centre for Cybersecurity and Cybercrime Investigation will be hosting a Digital Forensic Summer School for two weeks at the end of August 2012. The theme of the two week course will be "Creating an Open Source Computer Forensics Lab".

The prospectus currently includes topics such as:
  • Computer forensic processes
  • Case management topics and solutions
  • Building low-cost hardware solutions
  • Suspect system triage using open source tools
  • Preliminary analysis using open source tools
  • Full forensic analysis using open source tools
  • Open source forensic frameworks
  • Backup strategies and solutions for digital investigation labs
  • Using processing clusters for forensic tasks
  • Tool validation
  • Forensic reporting

Update: This training is for Law Enforcement only. The event announcement can be found here: http://cci.ucd.ie/content/ucd-cci-digital-forensics-summer-school-2012
~1 min read

ICDF2C 2012



The 4th International Conference on Digital Forensics and Cyber Crime (ICDF2C), hosted at Purdue University, will be held from October 24-26, 2012.

Website: http://d-forensics.org

Paper submission is the 1st of June 2012.

[Update]
Submission deadline: 6th July 2012
<div class="p1">Notification of Acceptance: 1st August 2012</div><div class="p1">Camera Ready: 1st September 2012</div><div class="p1">Conference Date: 24th and 26th October 2012 </div>

The following topics highlight the conference’s theme (from the conference page):
<ul><li>Business Applications of Digital Forensics</li><ul><li>e-Discovery</li><li>Civil Litigation Support</li><li>Incident Response</li><li>Cyber Crime Investigations</li><li>Online Fraud</li><li>Money Laundering</li><li>Hacking</li><li>Malware & Botnets</li><li>Sexual Abuse of Children on Internet</li><li>Software & Media Piracy</li></ul><li>Digital Forensics Techniques and Tools</li><li>Digital Forensics Process & Procedures</li><li>Cybercrime Investigation Management</li><li>Theoretical Foundations of Digital Forensics</li><li>Digital Forensics & Law</li><li>Mobile / Handheld Device & Multimedia Forensics</li><li>Digital Forensics Standardization & Accreditation</li><li>Cyber Criminal Psychology and Profiling</li><li>Cyber Culture & Cyber Terrorism</li><li>Information Warfare & Critical Infrastructure Protection</li></ul>

~1 min read

About Cybercrime Technologies

Welcome to Cybercrime Technologies. This blog is devoted to research and development in the area of Cybercrime and Digital Forensic Investigations. It will be a mix of practical how-to’s on a range of topics, and a place to keep up on current research.

Contributing Authors:
<ul><li>Dr. Joshua I. James - lecturer and digital forensic investigation researcher with the Digital Forensic Investigation Research Group, and lecturer with the SoonChunHyang University Graduate School of Forensic Science.</li></ul>
If you are interested in becoming a contributing author, please contact us.

Please see our development philosophy and goals.
Please also see our Privacy Policy.

~1 min read