| Paper | Presentation | Conference | Downloads | Author |
|---|---|---|---|
| Windows Memory Forensics: Detecting (un)intentionally hidden injected Code by examining Page Table Entries | DFRWS USA 2019 | Frank Block (ERNW Research GmbH) and Andreas Dewald (ERNW Research GmbH) | |
| An Incomplete Tour of the Forensic Implications of the Windows 10 Activity Timeline | DFRWS USA 2019 | Vico Marziale, Ph.D. (BlackBag Technologies) | |
| Android Auto & Google Assistant – How Google Encourages Hands-Free Motoring | DFRWS USA 2019 | Joshua Hickman | |
| CASE the Cyber-investigation Analysis Standard Expression | DFRWS USA 2019 | Vik Harichandran (MITRE), Cory Hall (MITRE), Andrew Sovern, Deborah Nichols, Navaneeth Subramanian, Trevor Bobka | |
| Memory forensics as Triage Analysis | DFRWS USA 2019 | Aaron Sparling | |
| Not Your Father’s Forensics: Concept Searching for Data Forensic Investigations: Uncover what keywords miss | DFRWS USA 2019 | Warren G. and Robert Kruse | |
| Adding APFS Support to The Sleuthkit Framework | DFRWS USA 2018 | Joe Sylve, Ph.D. (BlackBag Technologies) | |
| Analyzing the DarkNetMarkets Subreddit for Evolutions of Tools and Trends Using LDA Topic Modeling | DFRWS USA 2018 | Kyle Porter | |
| Automated Forensic Analysis of Mobile Applications on Android Devices | DFRWS USA 2018 | Xiaodong Lin, Ph.D. (Wilfrid Laurier University), Ting Chen, Tong Zhu, Kun Yang, Fengguo Wei | |
| CGC Monitor: A Vetting System for the DARPA Cyber Grand Challenge | DFRWS USA 2018 | Michael Thompson, Timothy Vidas | |
| Damaged Device Forensics | DFRWS USA 2018 | Steve Watson (VTO Labs) | |
| Deep Learning at the Shallow End: Malware Classification for Non-Domain Experts | DFRWS USA 2018 | Quan Le, Oisin Boydell, Mark Scanlon, Ph.D. (University College Dublin) | |
| Digital Forensic Investigation of Two-Way Radio Communication Equipment and Services | DFRWS USA 2018 | Arie Kouwen, Mark Scanlon, Ph.D. (University College Dublin), Kim-Kwang Raymond Choo, Nhien An Le Khac (University College Dublin) | |
| DroidKex: Fast Extraction of Ephemeral TLS Keys from the Memory of Android Apps | DFRWS USA 2018 | Benjamin Taubmann, Omar Al Abduljaleel, Hans Reiser | |
| Drone Forensics Program | DFRWS USA 2018 | Steve Watson (VTO Labs) | |
| Experience Constructing the Artifact Genome Project (AGP): Managing the Domain’s Knowledge One Artifact at a Time | DFRWS USA 2018 | Cinthya Grajeda Mendez, Laura Sanchez, Ibrahim Baggili (University of New Haven), Devon Clark, Frank Breitinger (University of New Haven) | |
| Forensic Analysis of Multiple Device BTRFS Configurations Using The Sleuth Kit | DFRWS USA 2018 | Jan-Niclas Hilgert, Martin Lambertz, Shujian Yang | |
| IoT 4n6: The Growing Impact of IoT on Digital Forensics | DFRWS USA 2018 | Jessica Hyde (George Mason University / Magnet Forensics ) | |
| Leveraging Relocations in Kernel ELF-binaries for Linux Kernel Version Identification | DFRWS USA 2018 | Manish Bhatt (University of New Orleans), Irfan Ahmed (University of New Orleans) | |
| Memory Forensics and the Windows Subsystem for Linux | DFRWS USA 2018 | Nathan Lewis, Andrew Case (Volexity), Aisha Ali-Gombe, Golden Richard III, Ph.D. (Louisiana State University) | |
| Turbinia: Automation of Forensic Processing in the Cloud | DFRWS USA 2018 | Thomas Chopitea, Aaron Peterson | |
| Using Santa to Augment Forensic Investigations | DFRWS USA 2018 | James Nettesheim, Gary Brown | |
| Was the 2016 Election Hacked? Your Forensic Expertise is Needed! | DFRWS USA 2018 | Suzanne Mello-Stark | |
| Multinomial Malware Classification Via Low-level Features | DFRWS USA 2018 | Sergii Banin, Geir Olav Dyrkolbotn (NTNU) | |
| Reconstructing Streamed Video Content: A Case Study on YouTube and Facebook Live Stream Content in the Chrome Web Browser Cache | DFRWS USA 2018 | Graeme Horsman | |
| Welcome pwn: Almond Smart Home Hub Forensics | DFRWS USA 2018 | Akshay Awasthi, Huw Read, Iain Sutherland, Konstantinos Xynos | |
| Who Watches the Watcher? Detecting Hypervisor Introspection from Unprivileged Guests | DFRWS USA 2018 | Tomasz Tuzel, Mark Bridgman, Joshua Zepf | |
| Advancing the AFF4 to the Challenges of Volatile Memory and Single Hashes | DFRWS USA 2017 | Bradley Schatz, Ph.D. (Schatz Forensic) | |
| AFIDS: Another Forensic Image Data Set | DFRWS USA 2017 | Mark Guido (The MITRE Corporation), Michael McCarrin, David Baker (DFRWS), Vik Harichandran, Sam Brothers | |
| Analyzing User-Event Data Using Score-based Likelihood Ratios with Marked Point Processes | DFRWS USA 2017 | Christopher Galbraith, Padhraic Smyth |