cheeky4n6monkey.blogspot.com
Cheeky4n6Monkey - Learning About Digital Forensics<b>The (Badly) Illustrated Musings of a Cheeky Forensics Monkey ...</b>
http://cheeky4n6monkey.blogspot.com/
<b>The (Badly) Illustrated Musings of a Cheeky Forensics Monkey ...</b>
http://cheeky4n6monkey.blogspot.com/
TODAY'S RATING
>1,000,000
Date Range
HIGHEST TRAFFIC ON
Sunday
LOAD TIME
1.4 seconds
PAGES IN
THIS WEBSITE
19
SSL
EXTERNAL LINKS
128
SITE IP
172.217.6.65
LOAD TIME
1.429 sec
SCORE
6.2
Cheeky4n6Monkey - Learning About Digital Forensics | cheeky4n6monkey.blogspot.com Reviews
https://cheeky4n6monkey.blogspot.com
<b>The (Badly) Illustrated Musings of a Cheeky Forensics Monkey ...</b>
cheeky4n6monkey.blogspot.com
Cheeky4n6Monkey - Learning About Digital Forensics: April 2015
http://cheeky4n6monkey.blogspot.com/2015_04_01_archive.html
The (Badly) Illustrated Musings of a Cheeky Forensics Monkey . Thursday, 30 April 2015. Trawling for Windows Phone 8 App Permissions. Trawling for Windows Phone App Permissions can be an Adventure! Fishnets not mandatory ;). A recent case had monkey researching how to determine which Windows Phone apps might store location data. Rather than manually opening/searching tens of app directories, wouldn't it be handy if we could auto-magically find the apps which allow our behaviours of interest? To the comma...
Cheeky4n6Monkey - Learning About Digital Forensics: Using SIFT and ophcrack to Crack a Windows (XP) Password
http://cheeky4n6monkey.blogspot.com/2011/12/using-sift-and-ophcrack-to-crack.html
The (Badly) Illustrated Musings of a Cheeky Forensics Monkey . Tuesday, 27 December 2011. Using SIFT and ophcrack to Crack a Windows (XP) Password. First, A Note on Windows Passwords . Thought I should include some relevant theory rather than dive striaght in as I have been doing . Jesper M. Johansson has written an excellent PowerPoint presentation on "Windows Passwords: Everything You Need To Know". I'm not sure when it was written, but he also wrote a similar MS Technet article in 2005 here. I suspect...
Cheeky4n6Monkey - Learning About Digital Forensics: July 2014
http://cheeky4n6monkey.blogspot.com/2014_07_01_archive.html
The (Badly) Illustrated Musings of a Cheeky Forensics Monkey . Thursday, 31 July 2014. Just grabbin some acorns . Against a directory of plists and then browse the resultant table for any interesting squirrels. Analysts could also execute the same queries against different sets of data to find common items of interest (eg email addresses, filenames, usernames). Similar in concept to SquirrelGripper. Which now parses BOTH binary and XML plists. Exciting times! XML based plists are text files which can be ...
Cheeky4n6Monkey - Learning About Digital Forensics: Detecting Spoofed Emails with SIFT's pffexport and some Perl scripting
http://cheeky4n6monkey.blogspot.com/2012/03/detecting-spoofed-emails-with-sifts.html
The (Badly) Illustrated Musings of a Cheeky Forensics Monkey . Thursday, 8 March 2012. Detecting Spoofed Emails with SIFT's pffexport and some Perl scripting. One likely issue facing today's forensicator is the sheer number of emails people keep in their Inboxes. These numbers can grow at a phenomenal rate especially if the user subscribes to multiple mailing lists. Unsure if was SANS. O) recently suggested using pffexport. For one of my previous posts dealing with email analysis. Like readpst. Under "us...
Cheeky4n6Monkey - Learning About Digital Forensics: Monkeying around with Windows Phone 8.0
http://cheeky4n6monkey.blogspot.com/2014/06/monkeying-around-with-windows-phone-80.html
The (Badly) Illustrated Musings of a Cheeky Forensics Monkey . Friday, 13 June 2014. Monkeying around with Windows Phone 8.0. Ah, the wonders of Windows Phone 8.0 . Failing eyesight, Frustration and Squirrel chasing. Updated last section with deleted record observations from a Nokia Lumia 530. Device running Windows Phone 8.10. Special Thanks to Detective Cindy Murphy. Lieutenant Jennifer Krueger Favour. And the Madison Police Department ("Forensicate Like A Champion! Thanks to Maggie Gaffney. Later, we ...
TOTAL PAGES IN THIS WEBSITE
19
ZENA FORENSICS: January 2015
http://blog.digital-forensics.it/2015_01_01_archive.html
Tuesday, January 13, 2015. Last October, I participated as speaker at the SANS DFIR. It was a great meeting and I am very happy to have been able to participate. My speech was focused on DPAPI. And how it could be used during a post-mortem digital investigation to access protected information: overcoming system's security it's sometimes necessary to access data otherwise not available. I like to call this "process" ODI. I want to be brief, skipping any DPAPI introduction and only providing some links.
Links – EasyMetaData
http://www.easymetadata.com/links
Powerful access to data. Forensic & DFIR Resources. 45; Forensic & DFIR Resources. 45; RRTX Blog! Binary foray Blog - Home of ShellBag Explorer Registry Explorer. Computer Forensics at Champlain College Blog. Hacking Exposed Computer Forensics Blog by David Cowen. Http:/ cheeky4n6monkey.blogspot.com/. Https:/ davidkoepi.wordpress.com/. Nibble on dav nads. The Forensic Lunch - Learn Forensics with David Cowen (video podcast). Computer Forensics - Software. Nibble on dav nads. SIFT Workstation by SANS.
ZENA FORENSICS: Digital Forensics Tools Bookmarks
http://blog.digital-forensics.it/2014/06/digital-forensics-tools-bookmarks.html
Sunday, June 15, 2014. Digital Forensics Tools Bookmarks. We want to share with you a list of bookmarks related to hardware and software tools for Digital Forensics acquisition and analysis. The bookmark file is in Mozilla Firefox, so it can be directly imported into it. You can download the file from. Http:/ www.realitynet.it/bookmarks.html. If you are interested in adding a tool to our list, please contact me at mattia @ realitynet.it. Subscribe to: Post Comments (Atom). REALITY NET - System Solutions.
ZENA FORENSICS: April 2012
http://blog.digital-forensics.it/2012_04_01_archive.html
Friday, April 27, 2012. A tale on RegRipper Plugins unnoticed. It cames out that some RegRipper. Have errors and/or do not parse correctly/at all the desired keys. This fact should not be unexpected since there exist many plugins (from far less many contributors, unfortunately) and since they should work on xp-(s)vista-7 Windows OSes: errors are around the corner. What is really. Detected by the DFIR community (included me, of course). Let's start with the first cas. Executed on a XP system:. This is the...
ZENA FORENSICS: WhatsApp Forensics
http://blog.digital-forensics.it/2012/05/whatsapp-forensics.html
Tuesday, May 15, 2012. Those who follow this blog may have noticed few months ago a post that introduced WhatsApp Xtract: this script was able to display in an HTML document all the WhatsApp messages extracted from an iPhone. A. Nd those who follow the xda developers forum may have recently noticed a. This last month, thanks to Martina Weidner (aka ztedd) who has decided to take control of its development, we have obtained valuable results. Where to find the information:. What's the file structure? Conve...
ZENA FORENSICS: December 2011
http://blog.digital-forensics.it/2011_12_01_archive.html
Wednesday, December 14, 2011. I don’t want to bore you explaining what is WhatsApp. If you have this serious gap, you can fill it here. Forensically speaking, WhatsApp was a very cool app until the last June. After that, someone had decided to add the extension “crypt” to such excellent source of information which was msgstore.db. This database stores information about contacts and also entire conversations. But simply opening it with SQLite Browser. Now, you need only to decrypt that file! Go to the repo.
ZENA FORENSICS: December 2013
http://blog.digital-forensics.it/2013_12_01_archive.html
Tuesday, December 3, 2013. 3minutesOf: a bit of X-Ways and RAID. Some days ago I was working on four images coming from a QNAP storage: so, four disk whose partitions were used to build up RAID volumes. " No problem. I said to myself, knowing that QNAP are *nix based and that XWF (X-Ways Forensics) is so powerful that I'll not need to switch on Linux. That's true, but you need to instruct XWF about which type and parameters the RAID is using. Easy again, let's find the configuration raidtab. The worst an...
ZENA FORENSICS: July 2012
http://blog.digital-forensics.it/2012_07_01_archive.html
Thursday, July 5, 2012. In DFIR activities timelines. Are often determinant to understand what happened (lot of refs here. Provided the community with the great log2timeline. That, along with the invaluable. Gives a (temporal) order to chaos. But l2t is not currently considering valuable artifacts coming from wtmp. Files on Linux systems. Introduction to those files let's see what wikipedia. File keeps track of the. Current login state of each user. File records all logins and logouts history. Is found i...
ZENA FORENSICS: May 2015
http://blog.digital-forensics.it/2015_05_01_archive.html
Thursday, May 21, 2015. In my own vocabulary, undesxing. Is the action of decrypting something encrypted with the Microsoft version of the DESX algorithm: a bit obfuscated title but I liked to make a scenographic use of it. Is a variant of the Data Encryption Standard in that a XOR step is added to the plaintext before and after the encryption: you can find a description on wikipedia. So, what is the issue with it? Let me provide the context. The Windows Local Security Authority ( LSA. Lsass processes co...
ZENA FORENSICS: March 2014
http://blog.digital-forensics.it/2014_03_01_archive.html
Friday, March 28, 2014. I must admit I did not expect so many acknowledgments by writing the volatility mimikatz plugin. I want to say thanks to all people that tweeted, emailed - and so on - me: it is just a piece of the puzzle, and the big pieces are those from volatility. First, I want to say thanks to Andrew Case. For the support and for having tweeted about the plugin: probably all those acks. Are because Andrew is an uber-well-known DFIR expert! Then I want to say thanks to Kristinn Gudjonsson.
TOTAL LINKS TO THIS WEBSITE
128
Deeper Desire | I want to be as aware of Christ in my life as I am of each breath I take. Without Him I know I am nothing, I have nothing, and I want more than that. I want to bring glory to God by living my life so that others would want what I have in
I want to be as aware of Christ in my life as I am of each breath I take. Without Him I know I am nothing, I have nothing, and I want more than that. I want to bring glory to God by living my life so that others would want what I have in Him. My 2 K’s mom needs prayers. February 25, 2016. From celebrating last week to contemplating this week. That’s where I find myself today. Over the last year or so, we’ve dealt with her and several health issues. A second and too-soon pregnancy that caused so...God tel...
cheeky29's blog - THiS iS MY WAY OF SEEiNG LiFE !! - Skyrock.com
THiS iS MY WAY OF SEEiNG LiFE! Sα sαıs mon bluug (Donc pαs də Tαlk Shıt). Sı tu l'αımə pαs, bın clıc sur lə bəαu tit [ x ] . Pour les αutres ben . Bonne vısıte! Ləs comməntαırə (gəntıl) font toujours du bıən. Donc vous gênər surtout pαs.). Blαh Blαh. Blαh Blαh Blαh. 17/11/2008 at 11:55 AM. 18/01/2009 at 9:15 AM. It's True Bitch! Reαl girls are not perfect Cαuse perfect gi. Qu'est ce que tu fais quand ta rien à faire? Cheveux x fer a plat x fer α friser -. Subscribe to my blog! You haven't logged in.
cheeky2ya (Nadia) - DeviantArt
Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')" class="mi". Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')". Join DeviantArt for FREE. Forgot Password or Username? Deviant for 5 Years. This deviant's full pageview. Last Visit: 136 weeks ago. This is the place where you can personalize your profile! Mar 24,...
Blog de cheeky4 - OPHELMANN&PAULMANN vous souhaite la Bienvenue ! - Skyrock.com
Mot de passe :. J'ai oublié mon mot de passe. OPHELMANN&PAULMANN vous souhaite la Bienvenue! Mise à jour :. Abonne-toi à mon blog! Y A DES PHOTOS CHOCS COMME CA QUE TU PEUX PAS EFFACER. N'oublie pas que les propos injurieux, racistes, etc. sont interdits par les conditions générales d'utilisation de Skyrock et que tu peux être identifié par ton adresse internet (67.219.144.114) si quelqu'un porte plainte. Ou poster avec :. Posté le vendredi 19 mai 2006 21:19. Modifié le mercredi 05 décembre 2007 12:14.
MANDARINS10
May 14, 2015. Law enforcement should use 4-year-olds to do interrogations. Why are you here? The cops think I killed my brother. I didn't kill him, he was my brother. Because.he just was. We were both born from the same parents. Because we just were. Our parents had 3 kids. They just did, okay? My brother and I were twins and then a few years later my little sister came along. She just - look, never mind. I didn't kill my brother. I loved him. I had no reason to kill my brother! Because I said so! Ldquo;...
Cheeky4n6Monkey - Learning About Digital Forensics
The (Badly) Illustrated Musings of a Cheeky Forensics Monkey . Saturday, 14 October 2017. Monkey takes a .heic. The hills are alive . with the compression of H.265! And macOS High Sierra. 1013), Apple has introduced a file container format called High Efficiency Image File Format. Apparently its pronounced "heef"). Apple is using HEIF to store camera/video/Apple "Live Photos". HEIF is based on multiple standards such as:. ISO Base Media File Format ISO (14496-12). For compressing the actual still picture.
Blog de Cheeky55 - Cheeky - Skyrock.com
Mot de passe :. J'ai oublié mon mot de passe. Bienvenu dans mon univers! Mise à jour :. Abonne-toi à mon blog! Merci laeticia, g paC une bonne soirée avec toi, sauf ke ton film fé tro peur on a tro bien rigolé mdr la prochaine foi je choisi le film, tu sé celui avec les voitures! Ou poster avec :. Retape dans le champ ci-dessous la suite de chiffres et de lettres qui apparaissent dans le cadre ci-contre. Posté le mercredi 21 juin 2006 03:53. Modifié le lundi 25 septembre 2006 09:04. Ou poster avec :.
cheeky's blog
A continuation of my blog. Migrated from friendster blog on 23rd Disember 2008. Thank you for visiting. Sub Child Category 1. Sub Child Category 2. Sub Child Category 3. This is default featured post 1 title. Go to Blogger edit html and find these sentences.Now replace these sentences with your own descriptions. This is default featured post 2 title. This is default featured post 3 title. Go to Blogger edit html and find these sentences.Now replace these sentences with your own descriptions. First of all...
cheeky59's blog - le sky de cheeky! - Skyrock.com
Le sky de cheeky! Ba voila vs etes sur mon sky! Il y aura des couts de gueule. 06/06/2006 at 11:26 PM. 30/07/2006 at 4:42 AM. Subscribe to my blog! Gros bisous jtd trooo. Don't forget that insults, racism, etc. are forbidden by Skyrock's 'General Terms of Use' and that you can be identified by your IP address (66.160.134.3) if someone makes a complaint. Please enter the sequence of characters in the field below. Posted on Sunday, 30 July 2006 at 4:42 AM. Laisse moi ton mesage perso. Espace pub* *$ $.
SOCIAL ENGAGEMENT