'웹브라우져 포렌식'에 해당되는 글 2건

  1. 2006.05.10 웹브라우져 포렌식 part2
  2. 2006.05.10 웹브라우져 포렌식 Part 1

Reviewing part one

Welcome to part two of the Web Browser Forensics series. In part one, we began investigating the intrusion of the Docustodian document management server hosting a law firm's data. The server appeared to have been compromised by a group of hackers who were using it as a repository for their MP3s, MPEGs, and pirated software.

In part one, we also performed a review of the Internet Explorer history and cached files on the system used by Joe Schmo, the primary suspect of the intrusion. Analysis of the web browsing history revealed Internet searches for license cracks and hacking books; however, all this malicious activity appeared to have been performed while Joe was on vacation with his family in Florida.

In part two we now set out to determine who used Joe's machine while he was on vacation. We will proceed by examining further investigative leads that involve performing an in-depth review of the web activity of all other browsers installed on Joe's hard drive.
웹브브라우져 포렌식 part1에 이은 part2 이다.
http://www.securityfocus.com/infocus/1832

Posted by 엔시스
웹브라우저 포렌식에 관련된 시큐리티 포커스에 담긴 내용입니다..
그 내용을 보면 Web browsing analysis - open source tools 인 pasco
Internet activity analysis - commercial tools도 소개 되었있습니다.

관심 있으신 분들은 한번 살펴보시길..


Posted by 엔시스