Data (Re)covery Data Protection Intrusion Analysis Incident Handling Forensics
Forensics
Why would you need forensic investigations?
Why would you need a forensic investigation?
Are you a lawyer, police official, business owner, or a compliance auditor? If you answered "yes" then you know the benefits and requirements of a forensic (re)view, but if you answered "no", don't think forensics is out of your reach. Discover what forensics can do for you, and the protection of your system's data and identity!
What analysis have we done?
(re)surge has helped develop, implement, and sustain government regulations and organizational policies that require Computer Forensic investigations. We have been case leads and the primary technical point of contact for investigating system intrusions, fraud, system abuse, intellectual property theft, harassment, regulatory compliance, and many other internet and insider-based crimes.
What type of forensics do we handle, and how do we handle it?
We have extensive knowledge of a variety of operating systems, file formats, media devices, investigation techniques, and incident response tactics. We also conduct process and memory dissection, system and file auditing, network and application tracing, and (re)verse-engineering of malicious binaries and mobile-code.
We provide a thorough and manual approach to our forensic methodology. We ensure the devices, data, events, times, acquisition tools, storage, and analysis are forensically sound. In addition to a manual (re)view and investigation we use industry-approved tools for incident response, data acquisition and analysis such as; Encase, WinHEX, Forensic Tool Kit (FTK), and IDA Pro.
Isn't this just data-(re)covery?
Forensics is much like data (re)covery; we incorporate many of the same techniques from our data (re)covery section but our concentration, intent, and focus are quite different when dealing with forensics. The purpose of forensics is to determine actions, motives, vectors, effects, and evidence for internet-based or internally-based crimes, misuse, or fruadulent activities. However, forensics can simply be used to find out what your systems are doing, what they are running, what they are communicating, or what they might be divulging.
Know what your system is divulging, what data exists, and who's looking at your information!
Are you a lawyer, police official, business owner, or a compliance auditor? If you answered "yes" then you know the benefits and requirements of a forensic (re)view, but if you answered "no", don't think forensics is out of your reach. Discover what forensics can do for you, and the protection of your system's data and identity!
What analysis have we done?
(re)surge has helped develop, implement, and sustain government regulations and organizational policies that require Computer Forensic investigations. We have been case leads and the primary technical point of contact for investigating system intrusions, fraud, system abuse, intellectual property theft, harassment, regulatory compliance, and many other internet and insider-based crimes.
What type of forensics do we handle, and how do we handle it?
We have extensive knowledge of a variety of operating systems, file formats, media devices, investigation techniques, and incident response tactics. We also conduct process and memory dissection, system and file auditing, network and application tracing, and (re)verse-engineering of malicious binaries and mobile-code.
We provide a thorough and manual approach to our forensic methodology. We ensure the devices, data, events, times, acquisition tools, storage, and analysis are forensically sound. In addition to a manual (re)view and investigation we use industry-approved tools for incident response, data acquisition and analysis such as; Encase, WinHEX, Forensic Tool Kit (FTK), and IDA Pro.
Isn't this just data-(re)covery?
Forensics is much like data (re)covery; we incorporate many of the same techniques from our data (re)covery section but our concentration, intent, and focus are quite different when dealing with forensics. The purpose of forensics is to determine actions, motives, vectors, effects, and evidence for internet-based or internally-based crimes, misuse, or fruadulent activities. However, forensics can simply be used to find out what your systems are doing, what they are running, what they are communicating, or what they might be divulging.
Know what your system is divulging, what data exists, and who's looking at your information!
Computer Forensics
[kuh
m-pyoo-ter fuh-ren-sik]The art and science of applying computer science to aid the legal process. Although plenty of science is attributable to computer forensics, most successful investigators possess a nose for investigations and a skill for solving puzzles, which is where the art comes in.
Methods of investigations:
Back To Top
- Rapidly engage evidence acquisition, hash database creations, and file (re)covery and analysis.
- Evidence collection, integrity custody, timeline analysis, system and network profiling, malicious code identity, (re)verse-engineering, theft, phishing, incident handling, and fraud.
- Securely and safely store and archive data, hardware, and documentation evidence in off-site, fire-proof and water-resistant safe.
- Provide detailed, low-level disk and memory analysis, process and file auditing, data tracing, and dissection of compromised hard drives, malicious binaries, exploitation scripts or mobile code, and analysis of advanced command and control tactics used by intruders.
- Forensic and native support for major file systems and technologies such as FAT, NTFS, Ext2/3/4, CDFS, UDF, RAID, riserfs, UFS, ISO, CDs, DVDs, Flash cards, media cards, Memory sticks, digital cameras, etc. (Re)view and (re)construction for image files, Office files, Database files, financial files, web files, compressed files, media files, and so on!
- Ability to assess and deliver solutions for damaged file tables, partitions, drive sectors, boot failures, formatted drives, or malware infected file systems.
Back To Top