Difference between revisions of "Getting Started in Forensic Research"

From ForensicsWiki
Jump to: navigation, search
m
(Recommended Reading)
(One intermediate revision by one other user not shown)
Line 10: Line 10:
 
#*[http://www.dfrws.org/2002/program.shtml DFRWS 2002 Program]
 
#*[http://www.dfrws.org/2002/program.shtml DFRWS 2002 Program]
 
#*[http://www.dfrws.org/2001/dfrws-rm-final.pdf DFRWS 2001 Technical Report] (no program available)
 
#*[http://www.dfrws.org/2001/dfrws-rm-final.pdf DFRWS 2001 Technical Report] (no program available)
# Review the [http://www.ifip119.org/ IFIP Working Group 11.9 on Digital Forensics] website and look at the proceedings from the past conferences (unfortunately, you can't download the papers and the book costs more than $100, but if you see something interesting it can usually be requested via interlibrary loan)
+
# Review the [http://www.ifip119.org/ IFIP Working Group 11.9 on Digital Forensics] website and look at the proceedings from the past conferences (unfortunately, you can't download the papers and the book costs more than $100, but if you see something interesting it can usually be requested via interlibrary loan) (Some higher education libraries subscribe to SpringerLink which makes full text of these proceedings available to students and faculty as part of the school subscription)
 
#*[http://www.ifip119.org/Publications/ IFIP WG 11.9 publications]
 
#*[http://www.ifip119.org/Publications/ IFIP WG 11.9 publications]
 
# Search for interesting forensic terms at the [http://portal.acm.org/dl.cfm ACM Digital Library] and [http://citeseer.ist.psu.edu/ CiteSeer]
 
# Search for interesting forensic terms at the [http://portal.acm.org/dl.cfm ACM Digital Library] and [http://citeseer.ist.psu.edu/ CiteSeer]
 
# Review the [http://www.sleuthkit.org/ Sleuth Kit Website]. In particular, review the issues of [http://www.sleuthkit.org/informer/index.php The Sleuth Kit Informer] and download a copy of Sleuth Kit for your computer.
 
# Review the [http://www.sleuthkit.org/ Sleuth Kit Website]. In particular, review the issues of [http://www.sleuthkit.org/informer/index.php The Sleuth Kit Informer] and download a copy of Sleuth Kit for your computer.
 
# Download a few of the public corpora from the [http://digitalcorpora.org/ Digital Corpora] website and give them a try.
 
# Download a few of the public corpora from the [http://digitalcorpora.org/ Digital Corpora] website and give them a try.
 +
# Try your hand at the [http://www.honeynet.org/misc/chall.html HoneyNet Project Challenges]. They are a little older, but are still valid. Plus there are solutions from previous attempts online!

Revision as of 17:58, 11 January 2008

Interested in getting involved in computer forensics research? Here's how to start.

Recommended Reading

  1. Read the proceedings for each of the past Digital Forensic Research Workshops sessions. If a specific article looks interesting, download it and read it!
  2. Review the IFIP Working Group 11.9 on Digital Forensics website and look at the proceedings from the past conferences (unfortunately, you can't download the papers and the book costs more than $100, but if you see something interesting it can usually be requested via interlibrary loan) (Some higher education libraries subscribe to SpringerLink which makes full text of these proceedings available to students and faculty as part of the school subscription)
  3. Search for interesting forensic terms at the ACM Digital Library and CiteSeer
  4. Review the Sleuth Kit Website. In particular, review the issues of The Sleuth Kit Informer and download a copy of Sleuth Kit for your computer.
  5. Download a few of the public corpora from the Digital Corpora website and give them a try.
  6. Try your hand at the HoneyNet Project Challenges. They are a little older, but are still valid. Plus there are solutions from previous attempts online!