| Paper | Presentation | Conference | Downloads | Author |
|---|
| An Incomplete Tour of the Forensic Implications of the Windows 10 Activity Timeline | DFRWS USA 2019 |
| Vico Marziale, Ph.D. (BlackBag Technologies) |
| Android Auto & Google Assistant – How Google Encourages Hands-Free Motoring | DFRWS USA 2019 |
| Joshua Hickman |
| CASE the Cyber-investigation Analysis Standard Expression | DFRWS USA 2019 |
| Vik Harichandran (MITRE), Cory Hall (MITRE), Andrew Sovern, Deborah Nichols, Navaneeth Subramanian, Trevor Bobka |
| Memory forensics as Triage Analysis | DFRWS USA 2019 |
| Aaron Sparling |
| Not Your Father’s Forensics: Concept Searching for Data Forensic Investigations: Uncover what keywords miss | DFRWS USA 2019 |
| Warren G. and Robert Kruse |
| Adding APFS Support to The Sleuthkit Framework | DFRWS USA 2018 |
| Joe Sylve, Ph.D. (BlackBag Technologies) |
| Analyzing the DarkNetMarkets Subreddit for Evolutions of Tools and Trends Using LDA Topic Modeling | DFRWS USA 2018 |
| Kyle Porter |
| Automated Forensic Analysis of Mobile Applications on Android Devices | DFRWS USA 2018 |
| Xiaodong Lin, Ph.D. (Wilfrid Laurier University), Ting Chen, Tong Zhu, Kun Yang, Fengguo Wei |
| CGC Monitor: A Vetting System for the DARPA Cyber Grand Challenge | DFRWS USA 2018 |
| Michael Thompson, Timothy Vidas |
| Damaged Device Forensics | DFRWS USA 2018 |
| Steve Watson (VTO Labs) |
| Deep Learning at the Shallow End: Malware Classification for Non-Domain Experts | DFRWS USA 2018 |
| Quan Le, Oisin Boydell, Mark Scanlon, Ph.D. (University College Dublin) |
| Digital Forensic Investigation of Two-Way Radio Communication Equipment and Services | DFRWS USA 2018 |
| Arie Kouwen, Mark Scanlon, Ph.D. (University College Dublin), Kim-Kwang Raymond Choo, Nhien An Le Khac (University College Dublin) |
| DroidKex: Fast Extraction of Ephemeral TLS Keys from the Memory of Android Apps | DFRWS USA 2018 |
| Benjamin Taubmann, Omar Al Abduljaleel, Hans Reiser |
| Drone Forensics Program | DFRWS USA 2018 |
| Steve Watson (VTO Labs) |
| Experience Constructing the Artifact Genome Project (AGP): Managing the Domain’s Knowledge One Artifact at a Time | DFRWS USA 2018 |
| Cinthya Grajeda Mendez, Laura Sanchez, Ibrahim Baggili (University of New Haven), Devon Clark, Frank Breitinger (University of New Haven) |
| Forensic Analysis of Multiple Device BTRFS Configurations Using The Sleuth Kit | DFRWS USA 2018 |
| Jan-Niclas Hilgert, Martin Lambertz, Shujian Yang |
| IoT 4n6: The Growing Impact of IoT on Digital Forensics | DFRWS USA 2018 |
| Jessica Hyde (George Mason University / Magnet Forensics ) |
| Leveraging Relocations in Kernel ELF-binaries for Linux Kernel Version Identification | DFRWS USA 2018 |
| Manish Bhatt (University of New Orleans), Irfan Ahmed (University of New Orleans) |
| Memory Forensics and the Windows Subsystem for Linux | DFRWS USA 2018 |
| Nathan Lewis, Andrew Case (Volexity), Aisha Ali-Gombe, Golden Richard III, Ph.D. (Louisiana State University) |
| Turbinia: Automation of Forensic Processing in the Cloud | DFRWS USA 2018 |
| Thomas Chopitea, Aaron Peterson |
| Using Santa to Augment Forensic Investigations | DFRWS USA 2018 |
| James Nettesheim, Gary Brown |
| Was the 2016 Election Hacked? Your Forensic Expertise is Needed! | DFRWS USA 2018 |
| Suzanne Mello-Stark |
| Multinomial Malware Classification Via Low-level Features | DFRWS USA 2018 |
| Sergii Banin, Geir Olav Dyrkolbotn (NTNU) |
| Reconstructing Streamed Video Content: A Case Study on YouTube and Facebook Live Stream Content in the Chrome Web Browser Cache | DFRWS USA 2018 |
| Graeme Horsman |
| Welcome pwn: Almond Smart Home Hub Forensics | DFRWS USA 2018 |
| Akshay Awasthi, Huw Read, Iain Sutherland, Konstantinos Xynos |
| Who Watches the Watcher? Detecting Hypervisor Introspection from Unprivileged Guests | DFRWS USA 2018 |
| Tomasz Tuzel, Mark Bridgman, Joshua Zepf |
| Advancing the AFF4 to the Challenges of Volatile Memory and Single Hashes | DFRWS USA 2017 |
| Bradley Schatz, Ph.D. (Schatz Forensic) |
| AFIDS: Another Forensic Image Data Set | DFRWS USA 2017 |
| Mark Guido (The MITRE Corporation), Michael McCarrin, David Baker (DFRWS), Vik Harichandran, Sam Brothers |
| Analyzing User-Event Data Using Score-based Likelihood Ratios with Marked Point Processes | DFRWS USA 2017 |
| Christopher Galbraith, Padhraic Smyth |
| Availability of Datasets for Digital Forensics – and What is Missing | DFRWS USA 2017 |
| Cinthya Grajeda Mendez, Frank Breitinger (University of New Haven), Ibrahim Baggili (University of New Haven) |