FACE : Automated digital evidence discovery and correlation

@inproceedings{Case2008FACEA,
  title={FACE : Automated digital evidence discovery and correlation},
  author={Andrew Case and Andrew Cristina and Lodovico Marziale and Golden G. Richard and Vassil Roussev},
  year={2008}
}
Digital forensic tools are being developed at a brisk pace in response to the ever increasing variety of forensic targets. Most tools are created for specific tasks – filesystem analysis, memory analysis, network analysis, etc. – and make little effort to interoperate with one another. This makes it difficult and extremely time-consuming for an investigator to build a wider view of the state of the system under investigation. In this work, we present FACE, a framework for automatic evidence… CONTINUE READING
Highly Cited
This paper has 122 citations. REVIEW CITATIONS

Citations

Publications citing this paper.
Showing 1-10 of 79 extracted citations

123 Citations

01020'10'12'14'16'18
Citations per Year
Semantic Scholar estimates that this publication has 123 citations based on the available data.

See our FAQ for additional information.

References

Publications referenced by this paper.
Showing 1-10 of 19 references

Suiche, “Enter Sandman (Why You Should Never Go To Sleep)

  • M. N. Ruff
  • PacSec Applied Security Conference,
  • 2007
1 Excerpt

The CPU: Defeating Hardware Based RAM Acquisition Tools (Part I: AMD case)

  • J. Rutkowska, ”Beyond
  • BlackHat DC 2007 presentation
  • 2007
1 Excerpt

An Analysis of Linux RAM Forensics

  • J. M. Urrea
  • Naval Post Graduate School Thesis, March 2006.
  • 2006
1 Excerpt

Offline Forensic Analysis Of Microsoft Windows XP Physical Memory

  • S. Schultz
  • Naval Post Graduate School Thesis, September 2006…
  • 2006

Similar Papers

Loading similar papers…