Book Review: Virtualization and Forensics by Dianne Barrett and Gregory Kipper

Virtualization and Forensics: A Digital Forensic Investigator’s Guide to Virtual Environments by Dianne Barrett and Gregory Kipper is a book packed with information. Unlike my last Syngress book review on Digital Triage Forensics by Stephen Pearson, this book is entirely relevant to computer forensic analysts and I vaguely recommend it.

In the field of digital forensics, there are some books that you have on your shelf and hope to reread every year, (File System and Forensic Analysis by Brian Carrier), and there are books you keep for reference. Virtualization and Forensics is packed with information about virtual machines, the environments they run in, the vendors making the applications, and how they apply to forensic investigations, but it’s more of a reference book as it provides artifacts of virtual machine and evidence that one was run.Virtualization and Forensics by Diane Barrett and Gregory Kipper

Virtualization and Forensics (VAF) covers the details of many virtualization applications, including VMware Workstation (and Fusion for Macs), Parallels, Microsoft Virtual PC MojoPac, MokaFive, and probably some others I had never heard of. VAF covers the artifacts left behind for each of these program installations, as well as their server versions. At this point you may be asking yourself ‘If it’s such a great book, why did he put ‘vaguely’ in the recommendation sentence?” That’s a good question!

VAF leaves out some critical information that I fault it for not including because of it’s title. This book is short for something covering such a massive (and popular) topic; virtualization was identified as the #1 Strategic Technology for 2009 by Gartner, the IT industry’s largest and most-strategic conference. The title of VAF includes “Investigator’s Guide”, but I have to disagree as there is just a surface being scratched here. The authors ran some tests and provided us the results of those tests, but didn’t offer anymore thought than that. The authors have a thorough understanding of virtualization and appear involved in researching the topic as they know all the white papers and research to reference. Read more

2012
05/19
POSTED BY
CATEGORY
Education
In Review
TAGS
Write comment

Nike+ not Tracking My Distance: Fixed!

When I wrote my original Nike Plus (Nike+) article about the device not syncing my runs, I never thought that it would become so popular and help scores of people. With that in mind, here is another how-to fix your Nike+ sensor guide for runners that are ending runs with 0.00 miles.

I’ve used Nike+ for a few years (at least) now and love using it; Dan's Nike+ Runseeing the progress I’m making and the stats I’m putting up are motivation enough, not to mention the competitions you can compete in, friends you can race against, etc. I love the device, but it isn’t without flaw. The Nike+ support team has always been very pleasant, but not the most helpful. Luckily, I have kept notes about how to solve some of the issues I’ve encountered with it so I can follow the same steps the next time the problem arises or teach you how to solve it yourself.

Most recently, Nike+ was not tracking my distance. This issue has occurred multiple times, in some cases it was tracking my history fine just the day before, and then stopped recording how many miles I covered. It kept note of the pace I was running and the time I ran, but not the mileage, which means it’s not tracking the calories either. Workout completed: Total Distance: 0 miles. Yay me, I ran nowhere! Just a heads up before we get started, one method may not work, but I’ve fixed it with different solutions, so be sure to try each one until your Nike+ app shows the miles or kilometers you’ve run.

Method 1: Soft Resetting Your Apple iPod Touch and Nike+ Sensor.

  1. Push and hold down both the Top Power Button and the Middle Home Button for about ten seconds until the Apple symbol appears. Once the Apple appears, you can let go, and your iPod will reboot itself (like a computer).

    2. Read more

2012
05/02
POSTED BY
CATEGORY
Running
TAGS
1 comment

No Sound on Mac OSX Lion 10.7 – Audio Problems

Towards the end of 2011 I was nearing graduation for my Master’s degree in Digital Forensics from the University of Central Florida and I was looking to further bolster my resume by adding more “keywords” to it. Rather than having just Windows and Linux, I wanted to add Mac to the list, so I bought a Macbook Pro. When is the best time to buy a Mac? Purchasing on Black Friday got me a nice discount, which was then even improved upon by Amazon. Without the student discount, their pricing was still lower than Apple’s with the student discount (Apple charges for shipping).

So the Mac arrives and it works. A few weeks in and I have no sound. What is going on here? Aren’t these things supposed to be the best computers out there and Windows sucks, yadda yadda yadda? Apparently not, because I have no audio!

Not knowing much about the workings of an Apple laptop, I do what I would in Windows, I open up the Task Manager, or Activity Monitor on a Mac. To do this, go to Launchpad > Utilities > Activity Monitor. (There is no shortcut to Activity Monitor, but you can create one or use Spotlight by pressing Command + Space, then start typing Activity Monitor. By default, Activity Monitor opens with My Processes displayed; I don’t want My Processes, I want All Processes, because it’s going to be running at the system level.

Activity Monitor has a great feature in the upper right, next to the dropdown to select All Processes, called a search filter. If you search for sound, nothing appears, BUT if you search for audio, you get one process: coreaudiod. Notice that the user is _coreaudiod, so this would not present itself if we were searching in My Processes.

Activity Monitor coreaudiod Read more

2012
04/16
POSTED BY
CATEGORY
Mac
TAGS

2 comments

How to Quickly Clean Your App Permissions

Do you like it when someone steals something from you? You promise not to be mad as long as they give it back. Right? All those apps on your iPhone, iPad, Android smartphone, the games you’re playing on Facebook, and each time you look for friends by logging into your email account through their website, you’re granting them access to your information. Your information includes all your contacts, the pictures, your personal info, and everything else you don’t want them to have. In 2 minutes, you can clean all of your permissions!

Mypermissions.org has a picture of the service provider’s logo that the user clicks and this link takes the user directly to that service provider’s permissions page. This makes removing permissions from those pesky data thieves incredibly easy to remove everything you do not want them to be accessing; you may be surprised at just how many things have permission to access your data. A simple click will clean your app permissions and you’ll be as good as new. Head over to mypermissions.org now and reclaim your data!

clean your app permissions

Read more

2012
02/19
POSTED BY
CATEGORY
Mobile Devices
Security
1 comment

New Dan Killam Logo and Layout Coming!

I’m very excited to announce that I will be upgrading this website to my own unique layout with an amazing personal branded logo. I think the logo turned out great, let me know what you guys think.
Dan Killam Smart Forensics Rebranding Logo

The logo and layout are being designed by Logiq Design. Truly a job well-done!

2012
02/07
POSTED BY
CATEGORY
Wordpress
7 comments