Paper | Presentation |
Conference |
Downloads |
Author |
Windows Memory Forensics: Detecting (un)intentionally hidden injected Code by examining Page Table Entries |
DFRWS USA 2019 |
|
Frank Block (ERNW Research GmbH) and Andreas Dewald (ERNW Research GmbH) |
An Incomplete Tour of the Forensic Implications of the Windows 10 Activity Timeline |
DFRWS USA 2019 |
|
Vico Marziale, Ph.D. (BlackBag Technologies) |
Android Auto & Google Assistant – How Google Encourages Hands-Free Motoring |
DFRWS USA 2019 |
|
Joshua Hickman |
CASE the Cyber-investigation Analysis Standard Expression |
DFRWS USA 2019 |
|
Vik Harichandran (MITRE), Cory Hall (MITRE), Andrew Sovern, Deborah Nichols, Navaneeth Subramanian, Trevor Bobka |
Memory forensics as Triage Analysis |
DFRWS USA 2019 |
|
Aaron Sparling |
Not Your Father’s Forensics: Concept Searching for Data Forensic Investigations: Uncover what keywords miss |
DFRWS USA 2019 |
|
Warren G. and Robert Kruse |
Adding APFS Support to The Sleuthkit Framework |
DFRWS USA 2018 |
|
Joe Sylve, Ph.D. (BlackBag Technologies) |
Analyzing the DarkNetMarkets Subreddit for Evolutions of Tools and Trends Using LDA Topic Modeling |
DFRWS USA 2018 |
|
Kyle Porter |
Automated Forensic Analysis of Mobile Applications on Android Devices |
DFRWS USA 2018 |
|
Xiaodong Lin, Ph.D. (Wilfrid Laurier University), Ting Chen, Tong Zhu, Kun Yang, Fengguo Wei |
CGC Monitor: A Vetting System for the DARPA Cyber Grand Challenge |
DFRWS USA 2018 |
|
Michael Thompson, Timothy Vidas |
Damaged Device Forensics |
DFRWS USA 2018 |
|
Steve Watson (VTO Labs) |
Deep Learning at the Shallow End: Malware Classification for Non-Domain Experts |
DFRWS USA 2018 |
|
Quan Le, Oisin Boydell, Mark Scanlon, Ph.D. (University College Dublin) |
Digital Forensic Investigation of Two-Way Radio Communication Equipment and Services |
DFRWS USA 2018 |
|
Arie Kouwen, Mark Scanlon, Ph.D. (University College Dublin), Kim-Kwang Raymond Choo, Nhien An Le Khac (University College Dublin) |
DroidKex: Fast Extraction of Ephemeral TLS Keys from the Memory of Android Apps |
DFRWS USA 2018 |
|
Benjamin Taubmann, Omar Al Abduljaleel, Hans Reiser |
Drone Forensics Program |
DFRWS USA 2018 |
|
Steve Watson (VTO Labs) |
Experience Constructing the Artifact Genome Project (AGP): Managing the Domain’s Knowledge One Artifact at a Time |
DFRWS USA 2018 |
|
Cinthya Grajeda Mendez, Laura Sanchez, Ibrahim Baggili (University of New Haven), Devon Clark, Frank Breitinger (University of New Haven) |
Forensic Analysis of Multiple Device BTRFS Configurations Using The Sleuth Kit |
DFRWS USA 2018 |
|
Jan-Niclas Hilgert, Martin Lambertz, Shujian Yang |
IoT 4n6: The Growing Impact of IoT on Digital Forensics |
DFRWS USA 2018 |
|
Jessica Hyde (George Mason University / Magnet Forensics ) |
Leveraging Relocations in Kernel ELF-binaries for Linux Kernel Version Identification |
DFRWS USA 2018 |
|
Manish Bhatt (University of New Orleans), Irfan Ahmed (University of New Orleans) |
Memory Forensics and the Windows Subsystem for Linux |
DFRWS USA 2018 |
|
Nathan Lewis, Andrew Case (Volexity), Aisha Ali-Gombe, Golden Richard III, Ph.D. (Louisiana State University) |
Turbinia: Automation of Forensic Processing in the Cloud |
DFRWS USA 2018 |
|
Thomas Chopitea, Aaron Peterson |
Using Santa to Augment Forensic Investigations |
DFRWS USA 2018 |
|
James Nettesheim, Gary Brown |
Was the 2016 Election Hacked? Your Forensic Expertise is Needed! |
DFRWS USA 2018 |
|
Suzanne Mello-Stark |
Multinomial Malware Classification Via Low-level Features |
DFRWS USA 2018 |
|
Sergii Banin, Geir Olav Dyrkolbotn (NTNU) |
Reconstructing Streamed Video Content: A Case Study on YouTube and Facebook Live Stream Content in the Chrome Web Browser Cache |
DFRWS USA 2018 |
|
Graeme Horsman |
Welcome pwn: Almond Smart Home Hub Forensics |
DFRWS USA 2018 |
|
Akshay Awasthi, Huw Read, Iain Sutherland, Konstantinos Xynos |
Who Watches the Watcher? Detecting Hypervisor Introspection from Unprivileged Guests |
DFRWS USA 2018 |
|
Tomasz Tuzel, Mark Bridgman, Joshua Zepf |
Advancing the AFF4 to the Challenges of Volatile Memory and Single Hashes |
DFRWS USA 2017 |
|
Bradley Schatz, Ph.D. (Schatz Forensic) |
AFIDS: Another Forensic Image Data Set |
DFRWS USA 2017 |
|
Mark Guido (The MITRE Corporation), Michael McCarrin, David Baker (DFRWS), Vik Harichandran, Sam Brothers |
Analyzing User-Event Data Using Score-based Likelihood Ratios with Marked Point Processes |
DFRWS USA 2017 |
|
Christopher Galbraith, Padhraic Smyth |