Here is some information regarding this week’s Tuesday ISSA – DC Chapter infosec meetup event. This talk looks great. You even get a copy of the bootable USB software used during the demonstration. Of course if it comes on a USB stick, I’d be leery about putting into a non-test computer. If anyone happens to make it to this talk, I’d be curious to know the name of the bootable forensics Linux distro used.

• Who: Inno Eroraha, NetSecurity Corporation
• What: Computer Forensics Jujitsu
  • A cyber crime has been committed. The computer used has been identified and is still up and running. The user (”suspect”), “Natalie Kampbell,” is claiming that a malware on the system must have downloaded the illicit pornography onto the computer on her behalf. You have been recruited as the forensics professional to conduct this investigation involving Ms. Kampbell, who was still sitting at her computer when the investigators showed up at the doorstep. What steps would you take to find reasonable evidence? The above scenario is too common today. This presentation walks through the steps that a first responder can execute to produce necessary forensics artifacts that can withstand legal scrutiny of opposing counsel, using just a USB boot disk loaded with forensics tools.
• When: 9/16, 6:30 – 8:00 PM EST
• Where: Radio Free Asia (2025 M Street NW; Washington, DC 20036; in the first floor conference room)

For more information on the ISSA – DC Chapter, see its description in our NoVA Meetups section. View our Calendar for a complete list of infosec events in and around the NoVA area. Here is a link to the page with information on this meetup.

Tags: bootable usb, eroraha, event, forensics, incident response, infosec, issa, issa-dc, linux, meetup, nova

This entry was posted on September 15, 2008 at 8:48 pm and is filed under NoVA Meetups. You can follow any responses to this entry through the RSS 2.0 feed.