Digital Forensics - What you need to know. Part 2
Вставка
- Опубліковано 31 тра 2024
- Do you need data recovery? Do you want to be featured in one of my videos? Contact me via email info@datarescuelabs.com
Ever wondered about how to get into digital forensics? Want to know the tools we use? This is the video for you.
Yes, my videos are long but If you want to jump around the video, below you can find the timestamps:
0:00 Intro
0:25 Workstations + misc
6:03 Imagers
7:03 Soldering bench
7:52 LFB
7:56 IR
8:29 Final words and misc things
-------------------------------------------------------------------------------------
TikTok: / forensicguy
Instagram: / datarescuelabs.inc
Facebook: / datarescuelabs
-------------------------------------------------------------------------------------
Some of the tools that we use:
ruSolut Monolith adapter
ruSolut eMMC Adapters
ruSolut TSOP adapter
ruSolut Visual Nand Reconstructor
FlashExtractor
Z3X EasyJtag + UFS
JBC NANO
Hakko Soldering Iron FM-203
Hakko Rework Station 810B
Quick 8610W Rework Station
ACHI IR6500 BGA Station
PC-3000 UDMA
PC-3000 Portable III +SSD and nVMe
DeepSpar 3
DeepSpar 4
DeepSpar DPI PCI-E NVME Addon
DeepSpar Forensic Addon
DeepSpar Network Addon
ZXW Tools
Adobe Premiere CC
Adobe Photoshop CC
Camtasia Studio
Cellebrite UFED (Latest Version)
MSAB XRY
Magnet Forensics IEF
Magnet Axiom
X-Ways
FTK Imager
Various Linux Distros
-------------------------------------------------------------------------------------
Music:
Philanthrope, cocabona, Monma, Misha, Louk - Searching chll.to/ac027153
-------------------------------------------------------------------------------------
Stock footage:
None
-------------------------------------------------------------------------------------
All graphics created by Data Rescue Labs
Need data recovery service? Forensic service?
Contact us today info@datarescuelabs.com
Data Rescue Labs Inc
145 Traders Blvd East Unit 8
Mississauga, Ontario
L4Z 3L3
Canada
Copyright (c) Data Rescue Labs Inc 2021
1-877-681-4131
www.datarescuelabs.com
#digitalforensics #DFIR #forensics
Once again another great video. I find these types of videos extremely helpful as a noob wanting to get into digital forensics. Can’t wait to see the next video.
Thank you! Next video will be about few thing I left out. Report writing, court appearances and other misc things
Part 3 will be next week. This would be the final part for now. But I will try to make more forensic videos in the future. I would also like to answer any questions that you have. Please ask in reply to this message and I will answer in part 3.
Hellow Chris, Sir, here giving my support to the channel.
Thank you! I can always count on you!
@@forensicguy Totally, :)
Awesome. Well equipped Lab.
It’s not all of our equipment but a most important ones
Let's just watch the another masterpiece uploaded today.
:)
Sir, you really are the man.
😉
One of my favorite youtube channels.
😎
nice video
waiting for part 3
I’ll film it this week.
I am in class right now but this is more important
That’s the spirit!
@@forensicguy :)
Pls add a dedicated video in mobile data recovery,lock remove without data loss..etc
Hey, a have a few questions for you Chris if you don't mind (please keep in mind that I don't know much about forensic)
1) Are your cable different from consumer cable?
2) Can civilian use your services or is it only the court who can give you a case to work on?
3) Is the thing about freezing RAM to keep the data on it true or is it a movie invention
Thank you for taking the time to answer me, I just found out your UA-cam channel and I'm already addicted 🙂
Thank you for your questions.
1) for UFED? Slightly different
2) we work with civilians and law enforcement. We keep ourselves neutral
3) I’ve learned this in school 11 years ago, but never put it to practice
I would ask you about Up828 sometime when I try to read the emmc chip it's given me a message " detect over current " .. you know why this happen?? Thank you so much
I actually haven’t seen this problem before. I only use up828 for one kind of chips and not emmc. I use other tools for emmc. Have you considered getting easyjtag?
@@forensicguy I used medusa pro and E-mate tools also I took pc3000 in Czech Republic course .. but for up828 I tried to read but only once time ..
Hey, what are the specs of your workstation for using cellebrite? Kind regards
That one fairly old, some i7 from 2014 with 32gb. It will soon be replaced by dual Xeon with 256gb ram
@@forensicguy Thank you for the fast reply.
Can I recover a permanently deleted video from an iPhone? In one of your other videos you said no, but then you said something about file recovery by accessing app data from a database so if there is a way I'd like to know it. I really want this video back, I've experimented with deleted file software, but it hasn't worked. Then I found out about data recovery labs and I found your channel, would sending my phone into to one of these labs be worthwhile? Or is the video gone forever and I should move on?
Videos are individual files with individual encryption keys, that’s why those can’t be recovered. Database records such as call logs, some third party messages and some other data is held in sql dbs and those can be recovered. Occasionally we find photos embedded in the sql and we can recover those too. But videos are off limits unfortunately
I plan on making a detailed video on this topic on near future. Make sure to stay subbed to my channel
@@forensicguy How do you access the sql?
Whats cold spray for?
Spraying Nand Chips during recovery for a better read
Are you still using a 4 -way USB Hub? LOL😂. Awesome
Hello sir can you please make video on how to recover data from ransomware effected system is there possible to recover from any type of ransomware ??
There are keys available for some ransomware but you’d have to search on the web.
@@forensicguy But sir it wont works
I know there's probably a reason but am I may why is your PCs case door open?
I need access to the systems at all times. Plug in drives, etc etc
@@forensicguy Oh ok thank you for responding!
Me Also Support Always To Our Canada Company Friends.
Mr Stanko Our Earth 🌍 Has Been Suffering from This Covid 2019 To 2021 Until This Year. Like a Cursed 🤬. I Saw Your Facebook Mr Stanko Friend. U have Loving 😍 ❤️ Family 👪. God Bless All of you Friend. Stay Safe. Take Care
Thank you very much! We will get through this covid!
@@forensicguy You're Welcome Mr Stanko And Friends. Yes We Can. 🙂 Thanks
i dont know easyjtag can be used for forensics...in my phone repair shop im use this easyjtag and ufibox for reset phone unlock then flashing software...😆
Anything can be as long as you document it and explain why you use it over any other tools
I didn't know that you have UA-cam 😅
Where did you find me before?
@@forensicguy I've been following your tiktok for quite a long time. i learned many things from you, thank you so much and please don't stop 😁
I am glad! I’ll have more soon
jbc is worth 2,000 dollars and tips 50 dollars each lol
Pricey but good.. the tips are even way more in Canada 🤨
@@forensicguy whats your phone number?
or is it on your website
4162381232 / 8776814131
Call tomorrow during business hours
7:15am to 4pm EDT
Any solution for Ransomware
Algorithm.
Appreciate all the comments! 💪🏼
@@forensicguy You're welcome.
git