Forensic research

Sort by:
Articles, softwares and blog posts related to forensic
forensic
Recovering Windows Secrets and EFS Certificates Offline
Based on our reverse-engineering we show how DPAPI, the Windows API for safe data storage on disk work. Our analysis reveals that it is possible to recover all previous passwords used by any user on a system. We have implemented DPAPI data decryption and previous password extraction in a free and open-source tool called DPAPIck.
@WOOT 2010
  • forensic
  • cryptography
  • offensive technologies
medias:2
forensic
Beyond files recovery OWADE cloud-based forensic
We present how to by pass offline the 4 layers of Windows encryption that protect web credentials and instant messengers credentials. We explain how to extract the sensitive data stored by the four major web browsers and the most popular instant messengers softwares such as Skype and Live messenger.
@BlackHat USA 2011
  • forensic
  • cryptography
  • offensive technologies
medias:2
video game
Kartograph
We present Kartograph our memory analyzer designed to perform live memory attacks against various games. We demonstrate how to use Kartograph to create undetectable map-hacks against various populars RTS such as Civ 4, Warcraft 3 and Supreme commander 2 in a matter of minutes.
@Defcon 18 2010
  • video game
  • forensic
  • offensive technologies
medias:4
forensic
Reversing DPAPI and Stealing Windows Secrets Offline
We show how DPAPI, the Windows API for safe data storage on disk work. Our analysis reveals that it is possible to recover all previous passwords used by any user on a system. We have implemented DPAPI data decryption and previous password extraction in a free and open-source tool called DPAPIck.
@BlackHat DC 2010
  • forensic
  • cryptography
  • offensive technologies
medias:2
forensic
OWADE Offline Windows Analysis and Data Extraction
OWADE is the first open source tool dedicated to cloud forensics.
2011
  • forensic
  • cryptography
  • offensive technologies
medias:2
forensic
DPAPIck
DPAPIck is a forensic tool designed to recover offline the data encrypted using DPAPI (Data Protection API).
2010
  • forensic
  • cryptography
  • offensive technologies
medias:2
About me
Researcher at Google, specializing in Internet security and privacy.
Latest blog posts
Latest social News
2 days ago
What Your Facebook Profile Photo Says About You - http://t.co/THHqZQxFem#fb#twitter#psych#smo#seo#privacy
3 days ago
Emotion color guide. Awesome ! What is your color? :)#design#web#art#ux http://t.co/bndVZysO5t
3 days ago
When a porn site masquerades as the Apple App Store - http://t.co/x3r0UKGUlX#ios#apple#security#seo#mobile
4 days ago
'Financial Times' Website and Twitter Accounts Hacked - http://t.co/asOWR3Hdi5#security#privacy #syrianelectronicarmy#wsj
5 days ago
Twitter ‘Hate Map’ shows where racist, homophobic, and offensive tweets originate - http://t.co/4cJUSmMZEO#freedom#twitter#web