Dark Data Discovery
In January, I wrote about Slack Space on a hard drive/thumb drive/mobile device, and today I am writing about other areas where data is hiding on a hard drive. I intentionally left Device Configuration Overlay (DCO), Disk Firmware Area (DFA)
Before you can do anything with an unstructured file, you first need to identify its file type. Our products start with the following steps: Calculate hashes (MD5, SHA-1, etc.) for the entire file, and match them to known good and/or
Our customer base is primarily in the Data Recovery, Data Security, Digital Forensics, Electronic Discovery and Spy Agency industries. When threatened by Hackers, Ransomware and Data Loss, what one technology is the ultimate solution to prevent the need for Data
In 2008, I wrote a blog entry, Simple Techniques That Fool Forensic Tools, that included an introduction to Alternate Data Streams. Now, I’d like to go into more detail, so that you can better understand the use and danger of
Unstructured Data sounds like files that store disorganized data or simple text, but I see it as more of a classification term than the description of a file’s lack of internal data structures. Some examples, provided in an article by
What does Dark Data mean? We use this term on our website, as if it is obvious. In the most basic terms, Dark Data is information that is difficult to find. So, in effect it is sitting in the dark.
Recently, I’ve given some presentations on Dark Data. Back in May, I talked about “Dark Data in Live Forensics“, for the TechPoint – New Economy New Rules breakfast. Last month, I covered the topic in more detail with a presentation called, “Dark
The best approach to a Digital Forensics (aka Computer Forensics or Cyber Forensics) investigation has been to perform a “Dead” analysis of the data storage devices. This requires the imaging (or copying) of hard drives, flash drives, discs, etc. for
What is a Killer App. (aka Killer Application)? Wikipedia says it’s software that is so necessary, or desirable, that it drives sales of the software/hardware necessary to run it. Investopedia defines it as “a buzzword that describes a software application that
