How smartphones reacts to IMSI catching attacks?
I recently happened to read a research, presented during the ACM WINTECH 2020 conference, related to IMSI Catchers and their exploitation for tracking users of mobile devices.
Continue…How to sort and organize files recovered by PhotoRec
During a forensic analysis, but also during other simple tasks (like helping a friend to recover deleted files), is useful to have a trusted tool to perform file-carving and data recovery.
Continue…Android Triage: a really useful forensic tool by Mattia Epifani
Most of forensic acquisition activities on an Android device can be accomplished using the ADB (Android Debug Bridge) tool.
However, a lot of commands are required: luckily, the forensic expert Mattia Epifani created a bash script that automatize a lot of operations needed to collect device informations.
How many data are shared by iOS and Android telemetry?
An academic research, conducted by Professor Douglas J. Leith from Trinity College at the University of Dublin, analyzed traffic originating from iOS and Android devices heading to Apple and Google servers at various stages of a phone’s operation, such as data shared, founding that Google collects around 20 times more telemetry data from Android devices than Apple from iOS.
Continue…Didier Stevens: finding Metasploit & Cobalt Strike URLs
An interesting article and video lesson by security reserarcher Didier Stevens.
Continue…How to reduce your Digital Footprint, part 1: Web Browsers and Extensions
There is no 100% anonymity on the internet.
Your Digital Footprint is everywhere on the web: it is in all the actions you do on keyboard and mouse, on every tap and swipe on our mobile phone.
Continue…How to perform a digital forensic analysis using only free tools
Currently, there are a lot of good forensics commercial tools, can be used to perform a whole dfir workflow. However, several analyst anche companies cannot afford the purchase of those (awesome) tools.
Continue…Windows registry Transaction Logs in forensic analysis
During forensic anaysis, Windows registry data can be useful to discover malicious activity and to determine if and what data may have been stolen from a network.
Continue…Karsten Hahn: fileless Ursnif/Gozy static analysis and unpacking
The malware analyst Karsten Hahn recently published a very interesting video about the analysis of a sample of the well-known malware Ursnif.
Continue…4 WhatsApp alternatives, focused on privacy
The recent controversies related to new WhatsApp‘s Privacy Policy have lead many users to start looking for new alternatives.
Continue…