Not Seen on CSI: The Real Art of Digital Forensics


This blog will involve some of the detailed steps that go into computer crimes investigation. E.g., the use of "hot plugs" -- devices that allow investigators to transport computers while they're still running. This prevents the devices from falling into an encrypted state. I'd also want to explore the use of tools such as EnCase. The point would be to differentiate between commercially available "forensics" tools (normally bundled with AV software), and the very specific tools used by LE.


