int for(ensic){blog;}: February 2007 Archives

« January 2007 | Main | March 2007 »

Lab

NIST tests Write Blockers by Tableau

NIST released two reports about the Tableau SATA write blocker T3u. As usual the USB- and FireWire interfaces had to undergo seperate tests. A third report covers the pocket IDE bridge T14 along with the FireWire interface.

By Andreas Schuster at 02/20/2007, 04:00 PM | Permalink

NT event log

A Common Misconception

An article in a German computer magazine recently remined me of a common misconception in event log parsers. Most parsers treat Windows event log files as sequential files - and read them from top to bottom. While this usually works, it might mangle or suppress a single log entry under special circumstances.

(more...)

By Andreas Schuster at 02/16/2007, 02:25 PM | Permalink

Search

Deutsch

Deutschsprachige Ausgabe

Latest articles

Imprint

This blog is a project of
Andreas Schuster
Im Äuelchen 45
D-53177 Bonn
Germany
impressum@forensikblog.de

int for(ensic){blog;}

Notes on computer forensics - international edition.

NIST tests Write Blockers by Tableau

A Common Misconception

Search

Deutsch

Categories

Archives

Latest articles

Imprint

int for(ensic){blog;}

Notes on computer forensics - international edition.

NIST tests Write Blockers by Tableau

A Common Misconception

Search

Deutsch

Categories

Archives

Latest articles

Subscribe

Imprint