Brett's Ramblings

Mini-WinFE and XWF
Brett Shavers
Digital Forensics
Due to a dozen tragedies, a half dozen fires popping up, and twice as many projects due at the same time, I’ve been way late in updating an X-Ways Forensics course along with updating the WinFE.  But now, the X-Ways course is about done to be uploaded as soon as the finishing touches are finished.  The new course includes a whole lot...
Never a shortage of examples
Brett Shavers
Speaking
I have given 20 presentations this year and that was only in the first half of 2016 (although, I have not scheduled anything for the remainder of the year to finish some projects). In each of the presentations, whether the attendees were parents, children, law enforcement, or digital forensics analysts, I have always been able to give really good e...
Compiling Identity in Cyber Investigations
Brett Shavers
Digital Forensics
Digital forensics analysis is the easy part of an investigation. That is not to say that the work of digital forensics is simple, but rather recovering electronic data is a rote routine of data carving and visual inspection of data. Interpreting the data requires a different type of effort to put together a story of what happened ‘on the computer’....
The Secret to Becoming More-Than-Competent in Your Job
Brett Shavers
Digital Forensics
I was part of an interesting and product online podcast today.   You can check it out at: http://nopskids.com/live/ The topics ranged from hacking, forensics, how to catch hackers, and a little on how criminals sometimes get away with it. Although I didn’t give any tips on how to get away with a crime, other than DON’T DO IT, I did speak ...
Behind the Keyboard - Enfuse 2016 Presentation download
Brett Shavers
Digital Forensics
I had the amazing honor of speaking before a full room at Enfuse this week.  This was not only my first time speaking at Enfuse, it was my first time at Enfuse. The conference was put together well.  Kudos to poolside event coordinator.  Those who know my forensic tool choices also know that I do not use Encase as my primary forensic...
Reviewing a tech book technically makes you a peer reviewer…
Brett Shavers
Digital Forensics
    If you have been in the digital forensics world for more than a day, then you know about peer reviews of analysis reports.  If you have ‘only’ been doing IR work where forensics isn't the main point (as in taking evidence collection all the way to court), then you may not be reading reports of opposing experts.&nbs...
When everyone's talking about it
Brett Shavers
Speaking
The King County Library System asked me to present on cyber safety topics in a very neat program they have (“When everyone’s talking about it..”).  I have been giving two separate, but related presentations and both have been well-received by those who have attended.  Mine is but a small part of the KCLS program.  I have even at...
I'm just a Tor exit node! I'm just a Tor exit node!
Brett Shavers
Privacy
Never thought I would still see this happening… http://www.ibtimes.co.uk/seattle-police-raid-home-privacy-activists-who-maintain-tor-anonymity-network-node-1552524 I have personally seen warrants served on the wrong address on two occasions.  The first was a drug investigation where the lead detective went to the wrong door to an apartment.&nb...
Barking up the Encryption Tree. You're doing it wrong.
Brett Shavers
Privacy
There always comes a time when an obscure, yet important concept, leaves the technical world and enters the main stream.  Recovering deleted files was one of those where we pretty much knew all along not only that it can be done, but that we have been doing it all along. The Snowden releases were another aspect of ‘yeah, we knew this all along...
The four corners of the Apple v FBI encryption debacle
Brett Shavers
Privacy
If only the FBI had picked a case where the issue was clear cut…that would make this encryption issue so much easier. The FBI doesn’t want Apple to simply “unlock” the phone. Apple (and just about every other high tech company) has been unlocking devices and allowing access to data for law enforcement for decades.  That’s not the issue here.&n...
Dude, just write the book.
Brett Shavers
Books
I had a discussion with a peer of mine about writing a book, in that my peer has been thinking of writing a book but never gets around to doing it.  After about two years of listening to how he should write his book, my response was “Dude, stop talking about it and write the darn book.” His book idea is a nonfiction technical book and is about...
Let's not go all Patriot Act on this Apple - FBI encryption thing.
Brett Shavers
Privacy
I’ve been involved in about a half dozen conversations, three different email threads, and twice as many emails with friends and clients about this Apple – FBI encryption issue.   It seems to be a divided opinion with no compromise, at least as far as I can see.   FBI's Fight With Apple Over Encryption May Erode European Trust in US - New...
Apple. Oranges. And Encryption.
Brett Shavers
Privacy
One of the hottest topics currently is the FBI vs Apple battle over encryption, in that the FBI wants Apple to rewrite their operating system in order for law enforcement to bypass Apple’s encryption.  The arguments on both sides are strong. Law enforcement must have the ability to bypass encryption in the name of national security.  Conv...
Books written by practitioners are many times better than those written by those who 'never done it'
Brett Shavers
Books
Many of Syngress published books I’ve read are those written by people simply writing about how they do their job…while they are doing their job.   They are probably not writing while they are physically doing their work, but you know what I mean. With my first book, Placing the Suspect Behind the Keyboard, I was consulting on a crim...
Bio-hacked humans and digital forensic issues...
Brett Shavers
Digital Forensics
If you thought The Grudge was the scariest thing you’ve seen on screen, you must have not yet watched Showtime’s ‘The Dark Net’.  In short, the series show how humans are procreating less and merging digitally into technology with bio-hacks. That makes for a bad combination on a few different levels. Without getting into non-techical issu...