Introduction A frequent question when dealing with browser forensics is ‘Does the Hit Count value mean that the user visited site ‘x’, on ‘y’ occasions?’ Most browsers record a ‘Hit Count’ value in one or more of the files they use to track browser activity, and it is important that an analyst understands any potential […]
We are pleased to announce the release of the updated user manual for NetAnalysis v1.53. It can be downloaded from here: NetAnalysis v1.53 User Manual
Internet Explorer Data As forensic examiners will be aware, Microsoft Internet Explorer stores cached data within randomly assigned folders. This behaviour was designed to prevent Internet data being stored in predictable locations on the local system in order to foil a number of attack types. Prior to the release of Internet Explorer v9.0.2, cookies were […]
Introduction Over the past few weeks, there has been worldwide interest in the trial of Casey Anthony which was held in Orlando, Florida. Anthony was indicted on charges of murder following the discovery of the body of her daughter Caylee Marie Anthony in 2008. On Tuesday 5th July 2011, the jury returned a not guilty verdict […]
Introduction Safari is a web browser developed by Apple and is included as part of the Apple Macintosh OS X operating system. It has been the default browser on all Apple computers since Mac OS X version 10.3 Panther and its first public release was in 2003. Safari is currently at major version 5 released […]
Introduction to Userdata Internet Explorer 8+ user data persistence is a function which allows online forms to save a small file to the system with information about values entered in a particular form. This allows the user to retrieve a half filled web based form when they revisit. Persistence creates new opportunities for website authors. Information […]
Introduction to NetAnalysis® v1.52 Digital Detective is pleased to announce the release of NetAnalysis® v1.52 (and HstEx v3.6). The release of this version has been eagerly awaited, so we are glad to say the wait is finally over. NetAnalysis® v1.52 adds a number of new features and fixes some minor bugs. Some of the major new features released […]
Overview HstEx v3.6 adds a number of new features and fixes some minor bugs. One of the major new features released in this version is the ability to recover Safari binary plist data. New Feature: Apple Safari Binary Plist Recovery The Apple Safari browser stores Internet history records in an Apple Property List (plist). With […]
Introduction Some of you will have noticed that from NetAnalysis® v1.50 there have been numerous new date and time columns added. These new timestamps were identified during months of research and development and are now included with the latest release. The image below shows some of the new fields from Internet Explorer. This article will […]
Introduction The Internet Explorer disk cache is a storage folder for temporary Internet files that are written to the hard disk when a user views page from the Internet.Internet Explorer uses a persistent cache and therefore has to download all of the content of a page (such as graphics, sound files or video) before it […]
English
Arabic
Chinese (Simplified)
Dutch
French
German
Italian
Portuguese
Russian
Spanish