New open source forensics mailing list.
10 views
Skip to first unread message
Simson Garfinkel
Feb 21, 2012, 7:23:32 AM2/21/12
to aff-d...@googlegroups.com, Brian Carrier
I will set up a group and set up several people as manager so we do not lose control of it. Who else wants to help manage?
On Feb 20, 2012 11:41 PM, "Benjamin Brink" <ka...@dekka.com> wrote:
Since linux is not the only open source operating system, would a project specific list, such as one of the first two, or a new, more generic one, such as foss_forensics, oss_forensics etc have resilience?
On 02/20/2012 04:45 PM, Greg Freemyer wrote:
Simson,
I wish there was one main place for all opensource / public domain
tools were discussed.
Assuming you mean the yahoo group linux_forensics, it looks like it
was almost dead last year. Look at the number of messages in history
chart at the bottom of:
http://tech.groups.yahoo.com/group/linux_forensics/?v=1&t=directory&ch=web&pub=groups&sec=dir&slk=3
So I think moving all traffic there is the better of the 2 options,
but wish there was a even more centralized list for the
communications.
Greg
On Mon, Feb 20, 2012 at 7:08 PM, Simson Garfinkel<sim...@acm.org> wrote:
bulk_extractor pulls out the prefetch files.
Currently nobody is using this feature. I wish people were.
I'm probably going to shut down either aff-discuss or bulk_extractor-users, and move all the people from one to the other. Or recommend that everybody move to linux_forensics. Any suggestions which to do?
On Feb 20, 2012, at 6:20 PM, Greg Freemyer wrote:
I think I'd take a look at the prefetch files.
See if they are running a lot of different things, or just the basics.
On Sun, Feb 19, 2012 at 11:23 AM, Brad<nycte...@gmail.com> wrote:
Let's suppose the task was reversed. You don't need or prove they are
an expert, you already know they can barely find the 'on' button. But
what if you needed forensics to show that this person barely knew what
a keyboard was even though they used it everyday for years.
My first guess would be control panel access and administrator level
changes, but many knucklehead users default to admin instead of user.
What next?
--
You received this message because you are subscribed to the Google Groups "aff-discuss" group.
To post to this group, send email to aff-d...@googlegroups.com.
To unsubscribe from this group, send email to aff-discuss+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/aff-discuss?hl=en.
--
Greg Freemyer
Head of EDD Tape Extraction and Processing team
Litigation Triage Solutions Specialist
http://www.linkedin.com/in/gregfreemyer
CNN/TruTV Aired Forensic Imaging Demo -
http://insession.blogs.cnn.com/2010/03/23/how-computer-evidence-gets-retrieved/
The Norcross Group
The Intersection of Evidence& Technology
http://www.norcrossgroup.com
--
You received this message because you are subscribed to the Google Groups "aff-discuss" group.
To post to this group, send email to aff-d...@googlegroups.com.
To unsubscribe from this group, send email to aff-discuss+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/aff-discuss?hl=en.
--
You received this message because you are subscribed to the Google Groups "aff-discuss" group.
To post to this group, send email to aff-d...@googlegroups.com.
To unsubscribe from this group, send email to aff-discuss+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/aff-discuss?hl=en.
--
You received this message because you are subscribed to the Google Groups "aff-discuss" group.
To post to this group, send email to aff-d...@googlegroups.com.
To unsubscribe from this group, send email to aff-discuss+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/aff-discuss?hl=en.
Brad Sumrall
Feb 21, 2012, 7:35:48 PM2/21/12
to aff-d...@googlegroups.com
Always willing to contribute here my friend!
Brad
Brad
To unsubscribe from this group, send email to aff-discuss...@googlegroups.com.
Stuart Bird
Feb 22, 2012, 1:17:39 AM2/22/12
to aff-d...@googlegroups.com
Simson
I'd be happy to put some time into this.
Stuart
I'd be happy to put some time into this.
Stuart
Sent from my BlackBerry®
From: Simson Garfinkel <sim...@acm.org>
Sender: aff-d...@googlegroups.com
Date: Tue, 21 Feb 2012 07:23:32 -0500
To: <aff-d...@googlegroups.com>; Brian Carrier<car...@sleuthkit.org>
ReplyTo: aff-d...@googlegroups.com
Subject: New open source forensics mailing list.
To unsubscribe from this group, send email to aff-discuss...@googlegroups.com.
RB
Feb 21, 2012, 4:15:53 PM2/21/12
to aff-d...@googlegroups.com, Brian Carrier
On Tue, Feb 21, 2012 at 05:23, Simson Garfinkel <sim...@acm.org> wrote:
> I will set up a group and set up several people as manager so we do not lose
> control of it. Who else wants to help manage?
> I will set up a group and set up several people as manager so we do not lose
> control of it. Who else wants to help manage?
Hopefully not a Yahoo! group? Last I checked they require a Yahoo! ID
to use their groups, and I'd really rather not set up Yet Another
Email Address.
Reply all
Reply to author
Forward
0 new messages