| Paper | Presentation | Conference | Downloads | Author |
|---|---|---|---|
| Deleted File Persistence on Digital Media | DFRWS USA 2017 | Jim Jones, Tahir Khan | |
| Carving Database Storage to Detect and Trace Security Breaches | DFRWS USA 2017 | James Wagner (DePaul University), Alexander Rasin (DePaul University), Boris Glavic, Karen Heart, Jacob Furst, Lucas Bressan, Jonathan Grier (Grier Forensics) | |
| Browser Artifacts of Google Drive and Gmail | DFRWS USA 2017 | Elizabeth Schweinsberg (Facebook) | |
| Availability of Datasets for Digital Forensics – and What is Missing | DFRWS USA 2017 | Cinthya Grajeda Mendez, Frank Breitinger (University of New Haven), Ibrahim Baggili (University of New Haven) | |
| Analyzing User-Event Data Using Score-based Likelihood Ratios with Marked Point Processes | DFRWS USA 2017 | Christopher Galbraith, Padhraic Smyth | |
| AFIDS: Another Forensic Image Data Set | DFRWS USA 2017 | Mark Guido (The MITRE Corporation), Michael McCarrin, David Baker (DFRWS), Vik Harichandran, Sam Brothers | |
| Advancing the AFF4 to the Challenges of Volatile Memory and Single Hashes | DFRWS USA 2017 | Bradley Schatz, Ph.D. (Schatz Forensic) | |
| Who Watches the Watcher? Detecting Hypervisor Introspection from Unprivileged Guests | DFRWS USA 2018 | Tomasz Tuzel, Mark Bridgman, Joshua Zepf | |
| Welcome pwn: Almond Smart Home Hub Forensics | DFRWS USA 2018 | Akshay Awasthi, Huw Read, Iain Sutherland, Konstantinos Xynos | |
| Reconstructing Streamed Video Content: A Case Study on YouTube and Facebook Live Stream Content in the Chrome Web Browser Cache | DFRWS USA 2018 | Graeme Horsman | |
| Multinomial Malware Classification Via Low-level Features | DFRWS USA 2018 | Sergii Banin, Geir Olav Dyrkolbotn (NTNU) | |
| Was the 2016 Election Hacked? Your Forensic Expertise is Needed! | DFRWS USA 2018 | Suzanne Mello-Stark | |
| Using Santa to Augment Forensic Investigations | DFRWS USA 2018 | James Nettesheim, Gary Brown | |
| Turbinia: Automation of Forensic Processing in the Cloud | DFRWS USA 2018 | Thomas Chopitea, Aaron Peterson | |
| Memory Forensics and the Windows Subsystem for Linux | DFRWS USA 2018 | Nathan Lewis, Andrew Case (Volexity), Aisha Ali-Gombe, Golden Richard III, Ph.D. (Louisiana State University) | |
| Leveraging Relocations in Kernel ELF-binaries for Linux Kernel Version Identification | DFRWS USA 2018 | Manish Bhatt (University of New Orleans), Irfan Ahmed (University of New Orleans) | |
| IoT 4n6: The Growing Impact of IoT on Digital Forensics | DFRWS USA 2018 | Jessica Hyde (George Mason University / Magnet Forensics ) | |
| Forensic Analysis of Multiple Device BTRFS Configurations Using The Sleuth Kit | DFRWS USA 2018 | Jan-Niclas Hilgert, Martin Lambertz, Shujian Yang | |
| Experience Constructing the Artifact Genome Project (AGP): Managing the Domain’s Knowledge One Artifact at a Time | DFRWS USA 2018 | Cinthya Grajeda Mendez, Laura Sanchez, Ibrahim Baggili (University of New Haven), Devon Clark, Frank Breitinger (University of New Haven) | |
| Drone Forensics Program | DFRWS USA 2018 | Steve Watson (VTO Labs) | |
| DroidKex: Fast Extraction of Ephemeral TLS Keys from the Memory of Android Apps | DFRWS USA 2018 | Benjamin Taubmann, Omar Al Abduljaleel, Hans Reiser | |
| Digital Forensic Investigation of Two-Way Radio Communication Equipment and Services | DFRWS USA 2018 | Arie Kouwen, Mark Scanlon, Ph.D. (University College Dublin), Kim-Kwang Raymond Choo, Nhien An Le Khac (University College Dublin) | |
| Deep Learning at the Shallow End: Malware Classification for Non-Domain Experts | DFRWS USA 2018 | Quan Le, Oisin Boydell, Mark Scanlon, Ph.D. (University College Dublin) | |
| Damaged Device Forensics | DFRWS USA 2018 | Steve Watson (VTO Labs) | |
| CGC Monitor: A Vetting System for the DARPA Cyber Grand Challenge | DFRWS USA 2018 | Michael Thompson, Timothy Vidas | |
| Automated Forensic Analysis of Mobile Applications on Android Devices | DFRWS USA 2018 | Xiaodong Lin, Ph.D. (Wilfrid Laurier University), Ting Chen, Tong Zhu, Kun Yang, Fengguo Wei | |
| Analyzing the DarkNetMarkets Subreddit for Evolutions of Tools and Trends Using LDA Topic Modeling | DFRWS USA 2018 | Kyle Porter | |
| Adding APFS Support to The Sleuthkit Framework | DFRWS USA 2018 | Joe Sylve, Ph.D. (BlackBag Technologies) | |
| Not Your Father’s Forensics: Concept Searching for Data Forensic Investigations: Uncover what keywords miss | DFRWS USA 2019 | Warren G. and Robert Kruse | |
| Memory forensics as Triage Analysis | DFRWS USA 2019 | Aaron Sparling | |
| CASE the Cyber-investigation Analysis Standard Expression | DFRWS USA 2019 | Vik Harichandran (MITRE), Cory Hall (MITRE), Andrew Sovern, Deborah Nichols, Navaneeth Subramanian, Trevor Bobka | |
| Android Auto & Google Assistant – How Google Encourages Hands-Free Motoring | DFRWS USA 2019 | Joshua Hickman | |
| An Incomplete Tour of the Forensic Implications of the Windows 10 Activity Timeline | DFRWS USA 2019 | Vico Marziale, Ph.D. (BlackBag Technologies) | |
| Windows Memory Forensics: Detecting (un)intentionally hidden injected Code by examining Page Table Entries | DFRWS USA 2019 | Frank Block (ERNW Research GmbH) and Andreas Dewald (ERNW Research GmbH) | |
| Using NTFS Cluster Allocation Behavior to Find the Location of User Data | DFRWS USA 2019 | Martin Karresand (Norwegian University of Science and Technology), Stefan Axelsson (Norwegian University of Science and Technology), Geir Olav Dyrkolbotn (NTNU) | |
| Syntactical File Carving and Automated Generation of Reproducible Datasets | DFRWS USA 2019 | Jan-Niclas Hilgert (Fraunhofer FKIE), Martin Lambertz (Fraunhofer FKIE), Mariia Rybalka (Fraunhofer FKIE), and Roman Schell (Fraunhofer FKIE) | |
| Leveraging Electromagnetic Side-Channel Analysis for the Investigation of IoT Devices | DFRWS USA 2019 | Asanka Sayakkara (University College Dublin), Nhien An Le Khac (University College Dublin), Mark Scanlon, Ph.D. (University College Dublin) | |
| Inception: Virtual Space in Memory Space in Real Space — Memory Forensics of Immersive Virtual Reality with the HTC Vive | DFRWS USA 2019 | Peter Casey (University of New Haven), Rebecca Lindsay-Decusati (University of New Haven), Ibrahim Baggili (University of New Haven), Frank Breitinger (University of New Haven) | |
| HookTracer: A System for Automated and Accessible API Hooks Analysis | DFRWS USA 2019 | Golden Richard III, Ph.D. (Louisiana State University), Andrew Case (Volexity), Aisha Ali-Gombe (Townson Univeristy), Mingxuan Sun (LSU), Ryan Maggio (LSU), Md Firoz-Ul-Amin (LSU), and Mohammad Jalalzai (LSU) | |
| Forensic Jailbreaking of iOS devices | DFRWS USA 2019 | Bradley Schatz, Ph.D. (Schatz Forensic) | |
| Forensic analysis of water damaged mobile devices | DFRWS USA 2019 | Aya Fukami (National Police Agency of Japan) and Kazuhiro Nishimura (National Police Agency of Japan) | |
| Forensic analysis of the Nintendo 3DS NAND | DFRWS USA 2019 | Gus Pessolano (Norwich University), Huw Read (Norwich University), Iain Sutherland (Noroff University College), and Konstantinos Xynos (Noroff University College) | |
| FbHash: A New Similarity Hashing Scheme for Digital Forensics | DFRWS USA 2019 | Donghoon Chang (Indraprastha Institute of Information Technology, Delhi), Mohona Ghosh (Indira Gandhi Delhi Technical University of Women), Somitra Sanadhya (IIT Ropar), Monika Singh (NIST), and Douglas White (NIST) | |
| Digital Forensic Practices and Methodologies for AI Speaker Ecosystems | DFRWS USA 2019 | Wooyeon Jo (Ajou University), Yeonghun Shin (Ajou University), Hyungchan Kim (Ajou University), Dongkyun Yoo (Ajou University), Donghyun Kim (KITRI BoB), Cheulhoon Kang (Supreme Prosecutor's Office, Republic of Korea), Jongmin Jin (Supreme Prosecutor's Office, Republic of Korea), Junghoon Oh (Supreme Prosecutor's Office, Republic of Korea), Bitna Na (Ajou University), and Taeshik Shon (Ajou University) | |
| Detection of Lateral Movement Across Valid Accounts by Using Human Behavior in the Physical Environment | DFRWS USA 2019 | Tomohiko Yano | |
| DB3F & DF-Toolkit: The Database Forensic File Format and the Database Forensic Toolkit | DFRWS USA 2019 | James Wagner (DePaul University), Alexander Rasin (DePaul University), Karen Heart (DePaul University), Rebecca Jacob (DePaul University), Jonathan Grier (Grier Forensics) | |
| A Structural Concept and Tool for Forensic Data Analysis and Recovery of Deleted SQLite Records | DFRWS USA 2019 | Christian Meng (University of Applied Sciences, Darmstadt) and Harald Baier (University of Applied Sciences, Darmstadt) | |
| AFF4-L: A scalable open logical evidence container | DFRWS USA 2019 | Bradley Schatz, Ph.D. (Schatz Forensic) | |
| A Practitioner Survey Exploring the Value of Forensic Tools, AI, Filtering, & Safer Presentation for Investigating Child Sexual Abuse Material (CSAM) | DFRWS USA 2019 | Laura Sanchez (University of New Haven), Cinthya Grajeda Mendez (University of New Haven), Ibrahim Baggili (University of New Haven), Frank Breitinger (University of New Haven) | |
| The Cyber-investigation Analysis Standard Expression (CASE) | DFRWS USA 2019 | Cory Hall |