Tuesday, April 14, 2009

Sans "WhatWorks in Forensics and Incident Response Summit" in July

The agenda is out and it looks to be a fantastic lineup of expert briefings and panels. The summit will be in Washington DC July 7 and 8, 2009. I was lucky enough to be chosen to be on the "Essential Forensic Tools" panel. With me on the panel are some of the big names in the Forensic/IR community, they are:

Jesse Kornblum who has made significant contributions with the free tools (MD5Deep, SSDeep, and Miss Identify and others) he has provided as well as the excellent papers he has written ("Using Every Part of the Buffalo in Windows Memory Analysis" and "Implementing BitLocker Drive Encryption for Forensic Analysis" as well as others), Jesse also has a blog that can be found here.

Troy Larson who is the Senior Forensic Investigator with Microsoft’s IT Security Group. Troy has presented my times at different conferences (Recovering Information from Deleted Security Event Logs, Vista Shadow Volume Forensic, etc.. and is a coauthor of the Handbook of Computer Crime Investigation: Forensic Tools and Technology.

and finally

Lance Mueller of the blog Computer Forensics, Malware Analysis and Digital Investigations. Lance has provide many enScripts on his blog to be used by all. I do not use Encase but I have learned many things by looking at the enScripts that Lance has developed, they have provided me insights into many areas of computer forensics.

I look forward to joining this panel of experts who have distinguished themselves in the field of Computer Forensics and Incident Response as well as meeting quite a few people who I have had the privilege of trading ideas and email's with.

As always Thoughts/Comments/Questions.........


Computer Repair New York said...

Brilliant update!!! I liked the way you have presented various things togther in a beautiful manner.

Epson Continuous Ink Systems said...

I just want to say that It was very good post, it helped me in finding a good affiliate,

Branded USB Sticks said...

I also want to say that its a very good post. I really like this post.

Smith said...

Hi, Good event folks!SANS the computer security company works relentlessly for a safe cyber world. There are many other such summits held by organizations such as EC-Council:http://www.eccouncil.org/pressroom_events/ec-council_events.aspx

Anonymous said...

How well does Generic Viagra work? Studies show that Generic Viagra UK improves erections in more than 80% of men taking Generic Cheap Cialis 100 mg versus 24% of men taking a sugar pill.No other ED tablet is proven to work better.

xiamenb2c02 said...

Top quality of ecco shoes are developed for discerning customers.Enjoy a great selection of newest style.discount ecco shoes on sale,free

shipping,110% price guarantee.Top quality of ecco shoes is your best chooice

for daily life and working,sport,and so on.And hot sale now UGG Boots

.fashion on the outside,warm on the inside.

Anonymous said...

good,thanks for your sharing,welcome to my website.
Dell Inspiron 1150 battery
Dell Inspiron E1705 battery
Dell Latitude D620 battery
Dell XPS M1330 battery
Dell XPS M1730 battery
Dell XPS M1530 battery
Dell XPS M1210 battery
Dell Inspiron 1525 battery
Dell Latitude D600 battery
Dell Latitude D820 battery
Dell Inspiron 6000 battery
Dell Inspiron 6400 battery
Sony VGP-BPS2 battery
Dell Latitude E5400 battery
Dell Latitude E5500 battery
Dell Latitude E6400 battery
Dell Latitude E6500 battery
Sony VGP-BPS8 battery
Sony VGP-BPS8a battery
Sony VGP-BPS8b battery

Unknown said...

Power balance Neoprene Wristband is crafted from 100% neoprene and features a comfortable Spandex lining that adds extra softness and stretch. What's more, it is proved that Neoprene Bracelet can make the wearer stronger and have better balance; the neoprene wristband is a perfect fit for any of the day's activities. make your Energy Balance. power balance

Computer Forensics Experts said...

I just read through the entire article of yours and it was quite good. This is a great article thanks for sharing this informative information. I will visit your blog regularly for some latest post. Nice post!

ibm123str said...

fujitsu fmv e8110 battery
fujitsu fmv c8200 battery
fujitsu 0644260 battery
fujitsu 0644270 battery
fujitsu 0644290 battery
fujitsu fm 43a battery
fujitsu fm 43b battery
fujitsu fm 50 battery
fujitsu fmv biblo loox -s battery
fujitsu fmv biblo loox-t battery
fujitsu fmv e8200 battery
fujitsu fmv lifebook 270 battery
fujitsu fmv lifebook s8000 battery
fujitsu fmvlbp103 battery
fujitsu fmvnbp116 battery
fujitsu fpcbp49 battery
fujitsu fpcbp68 battery
fujitsu fpcbp69ap battery
fujitsu fpcbp77 battery

Computer Forensics Expert said...

This is a great post. We’re always looking for relevant resources to share with clients and colleagues, and your piece is certainly worth sharing! Keep it worth!

Anonymous said...

Counter Depth French Door Refrigerator
How to Get Into Acting
Breville Smart Oven
How to Impress Woman
Picking Lottery Numbers
Canon Powershot A800
Adidas Barricade
Adidas Barricade 6.0
Cuisinart TOB-195
Acne Conglobata
Acer 11.6 Netbook
500 payday loan
acne inversa
checkmate payday loans
Pengurusan Masa

Buy Maxocum said...

i like the information thanks for posting the blog

Increase ejaculation volume pills said...

Implementing BitLocker Drive Encryption for Forensic Analysis" as well as others), Jesse also has a blog that can be found here....

Zetaclear Nail Fungus Product said...

I do not know how may I suppose to thank you. It was really great to come through the post and tips are really useful.

Caliplus erectile dysfunction drug review said...

Troy has presented my times at different conferences ...

Buy GenFX dietary supplement said...

Jesse made an meaningful contribution on the free tools.It was a pretty good job indeed.

hcg buy online said...

Top quality of ecco shoes are developed for discerning customers. HCG Blue Drops, the Faster and Natural way to lose weight...

Vitolax best natural laxative said...

I am waiting for this summit.

Delay prevent premature ejaculation product said...

It only does the basics right now but we will look to add more in the future.

Hoodia best rated diet pills said...

It only does the basics right now but we will look to add more in the future.

Hoodia best rated diet pills said...

The email conversation with hyperlink to email and the word Xref to email are the two main option to run the parser.

Best Grills 2012 said...

I don't understand there policy and forensics at microsoft...lol, and here are so many comments that "Like" you...i feel so close to facebook :))

baixar facebook said...

I just read through the entire article of yours and it was quite good
apply baixar facebook movel online free | baixar facebook | baixar facebook gratis

Best Personal Investigator in dallas, houston, Fort Worth said...

Investigative Resources of Texas have certified forensic computer examiners. Our examiners have expertise to determine whether you’ve been conciliate by illegal, unauthorized and unsanctioned outsiders. To get our service of computer forensics in East Texas, Call 214-662-1006.

Unknown said...

Hi all! Good day!

I need advice to help my company move another step in computer forensics field. I am currently working at one of commercial record centre in South East Asia. Our top management are very ambitious on the latest development of computer security and relevant issues. Between e-discovery and data recovery, what should our company start first?