Blogs
- Daves Hackleford
- Digital Detective
- Digital Evidence Papers & Books
- Digital Forensics Tips
- Forensic Focus
- Forensic Methods
- Fork – Forensics & Info Sec
- Ghetto Forensics
- Handler Diaries
- Nerdiosity
- John Carruthers
- Just Ask Weg
- Malware Traffice Patterns
- NoLife Coding
- Phil Hagen’s Scratch Pad
- Smarter Forensics
- Social Exploits
- Sud0man
- vNetSecurity
- Windows IR
- Zena Forensics
Challenges
Common CMD Commands
E-Discovery
Law Enforcement
Mobile Forensics
Open Source Digital Forensics
Professional Associations
- ACFE
- DFA
- DFRWS
- IACIS
- InfraGard
- Internet Crimes Against Children – Safety Resources
- ISFCE CCE Certification
- HTCC
- HTCI
Readings
- DBIR 2013
- DFIR Summits
- Practical Cryptographic Key Recovery
- The Physical Computer and the Fourth Amendment
- Why’s Poignat Guide To Ruby
Recovery
Tools
- Anti-Virus Scanners
- Check for Encryption (EDD)
- Cloud Cracker
- Computer COP
- F-Response
- GParted – free partition editor
- Geo-IP Locator
- Hardware
- Image Master
- LogiCube
- Voomtech Hardcopy III
- Imaging Tools
- Live View (Boot forensic image as a VM)
- Memory Forensics
- Navy Observatory Clock
- NetAnalysis
- Network Free Acquistion
- Password Cracker
- Pwn Pad
- Remote Monitoring
- SMART – Rebuild RAID
- Spam Database
- Toolkit Resources (Utilities)
- Tableau TD3
- Virtual Forensic Computing (Boot forensic image as a VM)
Websites
WiKi
Windows
- EventID
- Event-o-Pedia
- GUIDs List
- Microsoft Events & Erros Message Center
- Ultimate Windows Security – Log Events
- Windows Security – Logon Type Codes
Others
- Anti-Forensic
- Evidence Eliminator
- GREP – 15 Practical Commands
- So you want to work in Digital Forensics?
- Top 10 DFIR Blogs
azeemnow 