Zobrazeno 1 - 10
of 23
pro vyhledávání: '"Andreas Dewald"'
Autor:
Jan Gerrit Göbel, Andreas Dewald
With the increasing resilience of operating systems towards automated attacks, the application layer has come into the focus of criminals. Specially prepared websites in the World Wide Web compromise visitors by exploiting vulnerabilities in web brow
Autor:
Andreas Dewald, Frank Block
Publikováno v:
Digital Investigation. 29:S3-S12
Malware utilizes code injection techniques to either manipulate other processes (e.g. done by banking trojans) or hide its existence. With some exceptions, such as ROP gadgets, the injected code needs to be executable by the CPU (at least at some poi
Externí odkaz:
https://explore.openaire.eu/search/publication?articleId=doi_________::f3cac06984341f3966e567ba052ef6b5
https://doi.org/10.1016/j.diin.2019.04.008
https://doi.org/10.1016/j.diin.2019.04.008
Autor:
Andreas Dewald, Florian Hantke
Publikováno v:
EuroS&P Workshops
The use of Internet of Things devices is continuously increasing: People buy devices to make their lives more comfortable by using smart assistants or track sports activities and assess them. Moreover, these devices can sup-port digital investigators
Externí odkaz:
https://explore.openaire.eu/search/publication?articleId=doi_________::4c6853d1c7b143bd9ff48434aa881668
https://doi.org/10.1109/eurospw51379.2020.00073
https://doi.org/10.1109/eurospw51379.2020.00073
Autor:
Andreas Dewald, Frank Block
Publikováno v:
Digital Investigation. 22:S66-S75
The analysis of memory during a forensic investigation is often an important step to reconstruct events. While prior work in this field has mostly concentrated on information residing in the kernel space (process lists, network connections, and so on
Externí odkaz:
https://explore.openaire.eu/search/publication?articleId=doi_________::96c10def28212f1e376f6359bf3ad759
https://doi.org/10.1016/j.diin.2017.06.002
https://doi.org/10.1016/j.diin.2017.06.002
Autor:
Andreas Dewald, Sabine Seufert
Publikováno v:
Digital Investigation. 20:S83-S91
In forensic computing, especially in the field of postmortem file system forensics, the reconstruction of lost or deleted files plays a major role. The techniques that can be applied to this end strongly depend on the specifics of the file system in
Externí odkaz:
https://explore.openaire.eu/search/publication?articleId=doi_dedup___::cf6082998ec54cf72bd08a1c00958297
https://doi.org/10.1016/j.diin.2017.01.003
https://doi.org/10.1016/j.diin.2017.01.003
Publikováno v:
Digital Investigation. 16:S44-S54
RAIDs (Redundant Array of Independent Disks) are widely used in storage systems to prevent data loss in case of hardware defects on a hard disk and to improve I/O performance. In case the RAID controller fails or in the context of a forensic investig
Externí odkaz:
https://explore.openaire.eu/search/publication?articleId=doi_dedup___::737fa30c0605a70acc00edbd16ed69c2
Autor:
Andreas Dewald
Publikováno v:
IMF
With the ever increasing number of crimes in which computers or other digital devices are used, digital forensics plays an increasingly important role in today's jurisdiction. The acquisition and investigation of the devices is done by forensic exper
Externí odkaz:
https://explore.openaire.eu/search/publication?articleId=doi_dedup___::421ba3285e83704b908fe72eced861ee
https://doi.org/10.1515/itit-2015-0017
https://doi.org/10.1515/itit-2015-0017
Publikováno v:
Forensic Science International: Digital Investigation. 32:300915
ReFS is a modern file system that is developed by Microsoft and its internal structures and behavior is not officially documented. Even so there exist some analysis efforts in deciphering its data structures, some of these findings have yet become de
Externí odkaz:
https://explore.openaire.eu/search/publication?articleId=doi_________::2e06e2f07a45a243985420fb9503caf3
https://doi.org/10.1016/j.fsidi.2020.300915
https://doi.org/10.1016/j.fsidi.2020.300915
Autor:
Andreas Dewald, Jonas Plum
Publikováno v:
ARES
In forensic computing, especially in the field of postmortem file system forensics, the reconstruction of lost or deleted files plays a major role. The techniques that can be applied to this end strongly depend on the specifics of the file system in
Externí odkaz:
https://explore.openaire.eu/search/publication?articleId=doi_________::bd240f1f79605d3267a75a139237c23f
https://doi.org/10.1145/3230833.3232808
https://doi.org/10.1145/3230833.3232808
Publikováno v:
2018 11th International Conference on IT Security Incident Management & IT Forensics (IMF).
The field of memory forensics is getting more important in forensic investigations for obtaining valuable data of a running system. Besides kernel artifacts, there might be also plenty of interesting data in the heap of a user space process, but unfo
Externí odkaz:
https://explore.openaire.eu/search/publication?articleId=doi_________::5e39ad6a51b0f4712813c04230f1966c
https://doi.org/10.1109/imf.2018.00010
https://doi.org/10.1109/imf.2018.00010