| Paper | Presentation | Conference | Downloads | Author |
|---|---|---|---|
| Detecting Objective-C Malware Through Memory Forensics | DFRWS USA 2016 | Andrew Case (Volexity) and Golden Richard III, Ph.D. (Louisiana State University) | |
| Deleting collected digital evidence by exploiting a widely adopted hardware write blocker | DFRWS USA 2016 | Christopher Meffert (University of New Haven), Ibrahim Baggili (University of New Haven), Frank Breitinger (University of New Haven) | |
| dbling: Identifying Extensions Installed on Encrypted Web Thin Clients | DFRWS USA 2016 | Mike Mabey (Arizona State University), Adam Doupe (Arizona State University), Ziming Zhao (Arizona State University), Gail-Joon Ahn (Arizona State University) | |
| Data Sets Available from the National Software Reference Library | DFRWS USA 2016 | Douglas White (NIST) | |
| A practical approach to analyze smartphone backup data as a digital evidence | DFRWS USA 2016 | Jaehyeok Han, Sangjin Lee | |
| Extending The Sleuth Kit and its Underlying Model for Pooled Storage File System Forensic Analysis | DFRWS USA 2017 | Jan-Niclas Hilgert, Martin Lambertz, Daniel Plohmann | |
| Digital Forensic Approaches for Amazon Alexa Ecosystem | DFRWS USA 2017 | Hyunji Chung, Jungheum Park, and Sangjin Lee | |
| Use of Generalized Hough Transform on Interpretation of Memory Dumps | DFRWS USA 2017 | Paulo Roberto Nunes de Souza (University College Dublin), Pavel Gladyshev, Ph.D. (University College Dublin) | |
| Virtualization-Based Security: A Forensics Perspective | DFRWS USA 2017 | Jason Hale | |
| SCARF: A Container-Based Approach to Cloud-Scale Digital Forensic Processing | DFRWS USA 2017 | Christopher Stelly (University of New Orleans), Vassil Roussev, Ph.D. (University of New Orleans) | |
| Time-of-Recording Estimation for Audio Recordings | DFRWS USA 2017 | Lilei Zheng, Ying Zhang, Chien Eao Lee, Vrizlynn Thing | |
| SCADA Network Forensics of the PCCC Protocol | DFRWS USA 2017 | Saranyan Senthivel, Irfan Ahmed (University of New Orleans), Vassil Roussev, Ph.D. (University of New Orleans) | |
| Pull It Together: Enabling Interoperability of Digital Forensic Systems Using a Standard Representation and Supporting API | DFRWS USA 2017 | Sean Barnum, Ryan Griffith (DC3) | |
| Memory Based Dynamic Malware Analysis | DFRWS USA 2017 | Endre Bangerter (Bern University of Applied Sciences), Jonas Wagner | |
| Linux Memory Forensics: Dissecting the User Space Process Heap | DFRWS USA 2017 | Frank Block, Andreas Dewald | |
| Leveraging the SRTP protocol for Over-The-Network Memory Acquisition of a GE Fanuc Series 90-30 | DFRWS USA 2017 | Denton George, Filip Karpisek, Frank Breitinger (University of New Haven), Ibrahim Baggili (University of New Haven) | |
| Insights Gained From Constructing a Large Scale Dynamic Analysis Platform | DFRWS USA 2017 | Cody Miller, Dae Glendowne, Henry Cook, Demarcus Thomas, Patrick Pape, Chris Lanclos | |
| Gaslight: A Comprehensive Fuzzing Architecture for Memory Forensics Frameworks | DFRWS USA 2017 | Andrew Case (Volexity), Arghya Das, Seung-Jong Park, Ram Ramanujam, Golden Richard III, Ph.D. (Louisiana State University) | |
| Finding Digital Evidence in Mobile Devices | DFRWS USA 2017 | Hans Henseler, Ph.D. (University of Applied Sciences Leiden), Vince Noort | |
| DROP (DRone Open source Parser) Your Drone – Forensic Analysis of the DJI Phantom III | DFRWS USA 2017 | Devon Clark, Christopher Meffert (University of New Haven), Ibrahim Baggili (University of New Haven), Frank Breitinger (University of New Haven) | |
| Deleted File Persistence on Digital Media | DFRWS USA 2017 | Jim Jones, Tahir Khan | |
| Carving Database Storage to Detect and Trace Security Breaches | DFRWS USA 2017 | James Wagner (DePaul University), Alexander Rasin (DePaul University), Boris Glavic, Karen Heart, Jacob Furst, Lucas Bressan, Jonathan Grier (Grier Forensics) | |
| Browser Artifacts of Google Drive and Gmail | DFRWS USA 2017 | Elizabeth Schweinsberg (Facebook) | |
| Availability of Datasets for Digital Forensics – and What is Missing | DFRWS USA 2017 | Cinthya Grajeda Mendez, Frank Breitinger (University of New Haven), Ibrahim Baggili (University of New Haven) | |
| Analyzing User-Event Data Using Score-based Likelihood Ratios with Marked Point Processes | DFRWS USA 2017 | Christopher Galbraith, Padhraic Smyth | |
| AFIDS: Another Forensic Image Data Set | DFRWS USA 2017 | Mark Guido (The MITRE Corporation), Michael McCarrin, David Baker (DFRWS), Vik Harichandran, Sam Brothers | |
| Advancing the AFF4 to the Challenges of Volatile Memory and Single Hashes | DFRWS USA 2017 | Bradley Schatz, Ph.D. (Schatz Forensic) | |
| Who Watches the Watcher? Detecting Hypervisor Introspection from Unprivileged Guests | DFRWS USA 2018 | Tomasz Tuzel, Mark Bridgman, Joshua Zepf | |
| Welcome pwn: Almond Smart Home Hub Forensics | DFRWS USA 2018 | Akshay Awasthi, Huw Read, Iain Sutherland, Konstantinos Xynos | |
| Reconstructing Streamed Video Content: A Case Study on YouTube and Facebook Live Stream Content in the Chrome Web Browser Cache | DFRWS USA 2018 | Graeme Horsman | |
| Multinomial Malware Classification Via Low-level Features | DFRWS USA 2018 | Sergii Banin, Geir Olav Dyrkolbotn (NTNU) | |
| Was the 2016 Election Hacked? Your Forensic Expertise is Needed! | DFRWS USA 2018 | Suzanne Mello-Stark | |
| Using Santa to Augment Forensic Investigations | DFRWS USA 2018 | James Nettesheim, Gary Brown | |
| Turbinia: Automation of Forensic Processing in the Cloud | DFRWS USA 2018 | Thomas Chopitea, Aaron Peterson | |
| Memory Forensics and the Windows Subsystem for Linux | DFRWS USA 2018 | Nathan Lewis, Andrew Case (Volexity), Aisha Ali-Gombe, Golden Richard III, Ph.D. (Louisiana State University) | |
| Leveraging Relocations in Kernel ELF-binaries for Linux Kernel Version Identification | DFRWS USA 2018 | Manish Bhatt (University of New Orleans), Irfan Ahmed (University of New Orleans) | |
| IoT 4n6: The Growing Impact of IoT on Digital Forensics | DFRWS USA 2018 | Jessica Hyde (George Mason University / Magnet Forensics ) | |
| Forensic Analysis of Multiple Device BTRFS Configurations Using The Sleuth Kit | DFRWS USA 2018 | Jan-Niclas Hilgert, Martin Lambertz, Shujian Yang | |
| Experience Constructing the Artifact Genome Project (AGP): Managing the Domain’s Knowledge One Artifact at a Time | DFRWS USA 2018 | Cinthya Grajeda Mendez, Laura Sanchez, Ibrahim Baggili (University of New Haven), Devon Clark, Frank Breitinger (University of New Haven) | |
| Drone Forensics Program | DFRWS USA 2018 | Steve Watson (VTO Labs) | |
| DroidKex: Fast Extraction of Ephemeral TLS Keys from the Memory of Android Apps | DFRWS USA 2018 | Benjamin Taubmann, Omar Al Abduljaleel, Hans Reiser | |
| Digital Forensic Investigation of Two-Way Radio Communication Equipment and Services | DFRWS USA 2018 | Arie Kouwen, Mark Scanlon, Ph.D. (University College Dublin), Kim-Kwang Raymond Choo, Nhien An Le Khac (University College Dublin) | |
| Deep Learning at the Shallow End: Malware Classification for Non-Domain Experts | DFRWS USA 2018 | Quan Le, Oisin Boydell, Mark Scanlon, Ph.D. (University College Dublin) | |
| Damaged Device Forensics | DFRWS USA 2018 | Steve Watson (VTO Labs) | |
| CGC Monitor: A Vetting System for the DARPA Cyber Grand Challenge | DFRWS USA 2018 | Michael Thompson, Timothy Vidas | |
| Automated Forensic Analysis of Mobile Applications on Android Devices | DFRWS USA 2018 | Xiaodong Lin, Ph.D. (Wilfrid Laurier University), Ting Chen, Tong Zhu, Kun Yang, Fengguo Wei | |
| Analyzing the DarkNetMarkets Subreddit for Evolutions of Tools and Trends Using LDA Topic Modeling | DFRWS USA 2018 | Kyle Porter | |
| Adding APFS Support to The Sleuthkit Framework | DFRWS USA 2018 | Joe Sylve, Ph.D. (BlackBag Technologies) | |
| Not Your Father’s Forensics: Concept Searching for Data Forensic Investigations: Uncover what keywords miss | DFRWS USA 2019 | Warren G. and Robert Kruse | |
| Memory forensics as Triage Analysis | DFRWS USA 2019 | Aaron Sparling |