The next typical task of Cloud Forensics is the acquisition of a web based email account such as a Gmail account, an Yahoo account, a Hotmail account, etc. Of course, you can use Cloud Extractor (Oxygen) or Cloud Analyzer (Cellebrite). However, these tools are chargeable and not always available for an examiner. This article will tell you how to acquire a Gmail account with Thunderbird.

Nowadays, the basic exchange of information is carried out through Instant Messengers by using social networks. Some social networks have their own mobile apps which functionality can be compared with that of IM Messengers.

AXIOM is our one of the best tools. A few days ago Magnet Forensics has released AXIOM V2. Now AXIOM contains many features. We were especially delighted that the functional Volatility appeared in a new version of AXIOM. Volatility is the best tool for memory forensics. The combination of AXIOM and Volatility is clearly an excellent idea. And of course we immediately started testing this functionality.

Today we will tell about how to acquire a Facebook account. Of course, you can use commercial tools such as: Cloud Analyzer (Cellebrite), Cloud Extractor (Oxygen Forensics), E3 Platform (Paraben Corporation), etc. However, this can be done manually and in this article will show how to do this step-by-step.

Creating a digital forensic laboratory is a responsible step. The effectiveness of the laboratory depends on what software, hardware and equipment will be purchased.

DFC specialists took part in the creation and upgrade of several digital forensic laboratories owned by state organizations and private entities and today they will share their tips and tricks.

A typical user does not need to use the command line in OS X, since most of his functions cover what is implemented in the system’s graphical interface. Another thing is when you need some hidden features that are not available from the GUI. There is a wide range of commands that you can use instead of your graphic counterparts. Sometimes they provide additional functions that are usually not available.

Several years ago, Microsoft announced a new tool – AppLocker, which, according to the developers, was designed to increase the level of security when working in Windows. Unfortunately, the way was uncovered, in which you can run any application in the system bypassing AppLocker and without administrator rights.