Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Email and Internet Evidence Mark Pollitt Associate Professor, Engineering Technology.

Published byAmos Sullivan Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Email and Internet Evidence Mark Pollitt Associate Professor, Engineering Technology."— Presentation transcript:

1 1 Email and Internet Evidence Mark Pollitt Associate Professor, Engineering Technology

2 Web 1.0 Technologies Technologies – Email – Web – Skype – IM Web 1.0 because: – Static content – Application standards – Client based

3 Forensics on Web 1.0 Technologies Focus on two elements: – The application – The data Looking for: – The content – The connections

4 Applications Developers need to build three things into communications applications: – User interface – Data processing/storage – Communications protocols Multiple Applications can share a common protocol – Outlook, Thunderbird, Zimbra – Hotmail, Yahoo, Gmail

5 Web Browsers All share HTML Some support other technologies: – Active X, Flash, XML, etc. All store a cache of recent files and a history – Most store those differently – Usually, it takes a specific tool to look at browser histories Documenting both Internet history and reconstructing web pages is important evidence

6 Doing Browser Forensics Know how the browser stores data Know the location of the data Have a tool that can read that data Great resources: http://www.symantec.com/connect/articles/web- browser-forensics-part-1 http://www.symantec.com/connect/articles/web- browser-forensics-part-2

7 Email Very simple in concept: – Client/Server – SMTP protocol Two basic interfaces: – Web mail (Hotmail, Yahoo, Gmail) – Client based (POP, IMAP, SMTP) – Some support both Features vary by client

8 Email Clients Like Browsers, they share some features: – Communications protocols (POP, IMAP, SMTP, etc.) – User Interface – Storage – usually some form of database

9 Internet History Browsers Nirsoft – IEHistory View/Mozilla Cache View Security Exploded – Browser History Spy* Sqlite Viewer - Firefox

10 Email Investigations Client Software – Outlook – Thunderbird – Zimbra Forensic Suites – EnCase – FTK Webmail – Use browser forensics

11 Thank You for your Attention!

Download ppt "1 Email and Internet Evidence Mark Pollitt Associate Professor, Engineering Technology."

Similar presentations

Decision Group www.edecision4u.com Forensics Investigation Toolkit (FIT) Layer 7 Content Reconstruction Tool.

Decision Group Forensics Investigation Toolkit (FIT) Layer 7 Content Reconstruction Tool.
Copyright © 2012 Certification Partners, LLC -- All Rights Reserved Lesson 4: Web Browsing.

Copyright © 2012 Certification Partners, LLC -- All Rights Reserved Lesson 4: Web Browsing.
Lesson 4: Web Browsing.

Lesson 4: Web Browsing.
The Internet Useful Definitions and Concepts About the Internet.

The Internet Useful Definitions and Concepts About the Internet.
Internet…issues Managing the Internet

Internet…issues Managing the Internet
Chapter 2: Application layer  2.1 Web and HTTP  2.2 FTP 2-1 Lecture 5 Application Layer.

Chapter 2: Application layer  2.1 Web and HTTP  2.2 FTP 2-1 Lecture 5 Application Layer.
COS/PSA 413 Day 17. Agenda Lab 8 write-up grades –3 B’s, 1 C and 1 F –Answer the Questions!!! Capstone progress report 2 overdue Today we will be discussing.

COS/PSA 413 Day 17. Agenda Lab 8 write-up grades –3 B’s, 1 C and 1 F –Answer the Questions!!! Capstone progress report 2 overdue Today we will be discussing.
WWW and Internet The Internet Creation of the Web Languages for document description Active web pages.

WWW and Internet The Internet Creation of the Web Languages for document description Active web pages.
© 2009 Pearson Education, Inc. Publishing as Prentice Hall Networked Applications Chapter 11 Updated January 2009 Raymond Panko’s Business Data Networks.

© 2009 Pearson Education, Inc. Publishing as Prentice Hall Networked Applications Chapter 11 Updated January 2009 Raymond Panko’s Business Data Networks.
Web Design Terms and Concepts Ms. Scales. Q. What is a Server? A. A server is a computer that stores information many people can access. It runs special.

Web Design Terms and Concepts Ms. Scales. Q. What is a Server? A. A server is a computer that stores information many people can access. It runs special.
Practical PC, 7 th Edition Chapter 9: Sending E-mail and Attachments.

Practical PC, 7 th Edition Chapter 9: Sending and Attachments.
E-MAIL A Presentation by Derek Southern May 20, 2010 To SIR Area 2 CAT group.

A Presentation by Derek Southern May 20, 2010 To SIR Area 2 CAT group.
E – Mail History of E-Mails What is an E-Mail? What happens when we sent an E-Mail? E-Mail messages E-Mail Folders E-Mail Address Attachments Types of.

E – Mail History of s What is an ? What happens when we sent an ? messages Folders Address Attachments Types of.
Computer Concepts 2014 Chapter 7 The Web and E-mail.

Computer Concepts 2014 Chapter 7 The Web and .
PC Maintenance: Preparing for A+ Certification Chapter 25: The Internet.

PC Maintenance: Preparing for A+ Certification Chapter 25: The Internet.
Backup Local Email Online For secure offsite storage of your e-mail, and making it available from any computer or smart phone. Backup e-mail accessed with.

Backup Local Online For secure offsite storage of your , and making it available from any computer or smart phone. Backup accessed with.
8. Internet and E-Mail. Topics Internet Web browsers and evidence they create E-mail function and forensics Chat and social networking evidence.

8. Internet and . Topics Internet Web browsers and evidence they create function and forensics Chat and social networking evidence.
1 Computer Communication & Networks Lecture 27 Application Layer: Electronic mail and FTP Waleed.

1 Computer Communication & Networks Lecture 27 Application Layer: Electronic mail and FTP Waleed.
Computer Networking From LANs to WANs: Hardware, Software, and Security Chapter 12 Electronic Mail.

Computer Networking From LANs to WANs: Hardware, Software, and Security Chapter 12 Electronic Mail.
IS 247 Introduction to Web Application Development Tim Wu.

IS 247 Introduction to Web Application Development Tim Wu.

Similar presentations

Ads by Google