ENFSC2007 logo
 

>> ENFSC.COM
>> ENFSC 2008

HOME
WELCOMe letter
ENFSC 2007 Conference
General information
Topics & Speakers
Program
Exhibition
Lab sessions
Social Awareness
Collaboration
committees
Social Program
REGISTRATION
Location AND TRAVELLING
Heerlen, the netherlands
hotels
Sponsors
Press & PUblications
PresentationS (NEW)
Conference Management

  24, 25, 26 October 2007

Last update: 25.01.08

Lab Sessions

Wednesday 24 October - Lab Sessions
Afternoon Session
LiveWires 14.00 - 17.30 Internet Safety Games: Making Wise Choices On-line
Drew Ann Wake

Thursday 25 October - Lab Sessions
Morning Session
LiveWires 10.00 - 12.30 Internet Safety Games: Making Wise Choices On-line
Drew Ann Wake
AccessData 10.00 - 12.30 Investigating the Windows Registry
Russell May
Paraben 10.00 - 11.00 Handheld Forensic Technologies New Emerging Trends
Review of Device Seizure Releases
Overview of GPS Seizure
Demonstration of new Point to Point Technology
  11.00 - 12.30 Preview of new technology: P2 Commander
Afternoon Session
LiveWires 14.00 - 17.30 Internet Safety Games: Making Wise Choices On-line
Drew Ann Wake
AccessData 14.00 - 17.30 Accelerating Password Recovery
Eric Thompson
Paraben 14.00 - 15.00 E-mail Forensics Evaluation of Archives
  15.00 - 16.00 Enterprise Technology The Next Generation - Proactive Forensics
  16.30 - 17.30 Question and Answer Period with CEO Amber Schroader

Friday 26 October - Lab Sessions
All day
WetStone Technologies 10.00 - 17.30 Investigating Malicious Code and Steganography
Chet Hosmer
Morning Session
LiveWires 10.00 - 12.30 Internet Safety Games: Making Wise Choices On-line
Drew Ann Wake
AccessData 10.00 - 12.30 Presenting FTK 2.0
Eric Thompson
Paraben 10.00 - 12.30 Device Seizure for Cell Phones
OpenLine 10.00 - 12.30 Endpoint Security - Onzichtbare infiltratie
Ben Pelzer
Afternoon Session
LiveWires 14.00 - 17.30 Internet Safety Games: Making Wise Choices On-line
Drew Ann Wake
AccessData 14.00 - 17.30 Presenting FTK 2.0
Eric Thompson
Paraben 14.00 - 15.00 Device Seizure for GPS Devices & P2P Tool
15.00 - 17.30 Device Seizure for PDA & Hybrid Devices
   

Labsessions during ENFSC 2007
These company’s will organise labsessions during the conference:

• LiveWires -  LiveWires is sponsored by New Horizons New Horizons
5 groups of children and their parents and teachers will visit the conference. The Canadian organization www.livewwwires.com will let them play one of their specialized awareness-games. While the kids are working on the game their parents will get special briefings on the good and the bad things of the internet. Awareness has been adopted by the conference-organization as an important item for this conference. Thanks to Dutch politics and public organizations this topic will be an important additional piece of the conference.
 
• Paraben Corporation  

Handheld Forensics Processing the Mobile
Handheld forensics is the hot topic in the world of digital forensics since almost every suspect potentially can have this digital fingerprint on them. Learn what to do to maximize this fingerprint and learn how the evidence can work for you. Sample data of different mobile devices will be examined. Review different sources of evidence from the device to the tower data that can guide you to the position of the suspect.

P2 Forensics Processing through the Mass Data
As computer storage becomes less expensive, you are more likely to be required to process terabytes of data in any given forensic exam. This can be a daunting task. We will walk you through a typical exam of a large capacity system using Paraben’s P2 Forensic Process.
 
• WetStone Technologies, Inc. Wetstone

Investigating Malicious Code and Steganography
The rapid evolution of malicious software applications is directly impacting computer forensic investigators today. This presentation/demonstration will report on the evolution of malicious software and steganography. A live investigation will be performed with audience participation.
 
• AccessData Corporation AccessData

FTK 2.0
This session will explore the differences between FTK 2.0 and FTK 1.X. 
Attendees will navigate the interface in a hands-on environment while learning about key features such as:
•  File filtering within the FTK 2.0 relational database
•  Building Cases with FTK 2.0 in a multi-user environment
•  New data carving and file recognition technology
•  Using multi-threaded processing to gain immediate data access
 
• Open Line  

Endpoint Security - Onzichtbare infiltratie
Doordat kwaadwillige activiteiten zich vormen tot gerichte, criminele aanvallen en de toenemende mate van onzichtbaarheid van infiltraties aan de orde van de dag is, is een proactieve beveiliging van het 'endpoint' nu zeer belangrijk. Dit is de enige manier van adequate beveiliging tegen deze onbekende indringers.
Beveiliging tegen kwaadwillige code, het stoppen van ongeautoriseerd gebruik van applicaties en het behouden van de integriteit van de 'endpoints' zijn nu van levensbelang. Hiermee worden enorme kostenbesparingen bereikt en krijgt het IT-management meer controle over en inzicht in hun systemen. Deze strategie is de 'next level in IT security'. Met de toenemende aanvallen op applicatieniveau is een effectief beheer van de desktop-populatie en de serveromgeving vereist om de risico's te minimaliseren en de efficiëntie van de helpdesk en de administratieve functies te verbeteren.

Programma:
• Bestrijding van onzichtbare bedreigingen
• Waar komen vandaag de dag bedreigingen vandaan?
• Bedreigingen vandaag de dag?
• Gebruikersgedrag
• De huidige situatie
• Richtlijnen uit de praktijk
• Het verkrijgen van 'Next Level in IT Security'
• Securing Endpoints on a Windows based Enterprise