Posts Tagged ‘Digital Forensics’

On the methodology of forensic analysis of artifacts created on Android smartphones, Telegram Messenger is described in this article. This methodology is based on the development of a set of experiments suitable for generating artifacts and storing them on a storage device, as well as using virtualized smartphones to ensure common results and full repeatability of experiments, so that our results can be reproduced and verified by a third party.

Jeremy Scott decided to conduct a memory analysis using a completely open collection of tools called “Volatility.” We will be able to follow it step by step in this blog. Jeremy will try to answer some simple questions in an attempt to identify malicious code. Since memory analysis is extremely important for responding to incidents, and it can help identify malicious code and explain how the pattern was used in a suspicious system.

Rekall Framework is a completely open set of tools that works on any platform that supports Python. It supports the research of the following 32-bit and 64-bit memory images. Rekall also provides a complete memory sampling capability for all major operating systems. In addition, Rekall has a complete graphical interface for writing reports and analysis of driving.

The Internet and many applications are so closely integrated into our lives that we sometimes do not imagine life without them. It can be not only our helper, but also play against us.