Author Archives: Chris J

About Chris J

Chris J studies physical and information security. He started the Ann Arbor Chapter of TOOOL, attended Eastern Michigan University got a degree in Applied Information Assurance. Work involves Threat Intelligence.

A little confused about Digital Forensics and the tools to use

Leave a reply

So I took Digital Forensics 1 at Eastern. The professor that taught the class owns his own forensics business. One of the things the professor kept repeating through out the semester: “You can’t use Open Source Tools for Forensics, it won’t stand up in court”. “You have to use Court approved tools, tools that the court has accepted in previous trials”.

Tonight, we started Digital Forensics 2. It’s a different professor. This one does Digital Forensics for a living as well for the Department of Justice. He said that you can use Open Source tools for Forensics, does so regularly, and testifies in court for it. This professor said there are no such thing as court approved tools, even though that Encase claims otherwise in their marketing material.

So I’m confused. Can you or can you not use Open Source tools Digital Forensics? I know there are books on the subject like Digital Forensics with Open Source Tools by Cory Altheid, but don’t know how it’s viewed over all when using Open Source tools.

It’s really not hard to search the internet

Leave a reply

Looking at twitter the other day, I’m left wondering whatever happened to people working for news agencies doing research, has researching things you see died?

A tweet came out:

Winter gales on Lake Michigan have encased the St. Joseph Lighthouse in a thick coating of ice (c. John McCormick): pic.twitter.com/PaxuxEhpqS

Embedded image permalink
c. John McCormick – http://www.michigannutphotography.com

Now, that’s an awesome looking photo. To me the ice looks a little like butter cream frosting, so I went and did a little checking, to see if it’s real. It was, and the checking took me all of 10 seconds to find a large image. Un-edited so it still contained it’s exif data. I used the reverse image search tool for Chrome. The exif data for the original photo is from Jan 23, 2013

Back to the tweet however. If you notice, in the tweet the Scott Meiklejoh said it wasn’t his photo, and gave credit to the original artist. Yet the first response to the tweet in the timeline is:

Anthony Morrison ‏@THETonyMorrison3 Jan

@ScottyTWN this is crazy!! Can we use this photo on CNN?? Tweet me!!

Looking at Mr. Morrison’s information he does work at CNN as a photographer. So you would think he’d actually be diligent enough to make sure he was asking the right person for permission to use a photo. I’m not trying to shame or insult Mr. Morrison, I’m just surprised at the instant request for usage without digging any.

So the question is, what ever happened to people researching things and doing a little leg work?

Welcome to my new blog

Leave a reply

I’ve wanted to create this blog for a while, but never seemed to find the time to set it up the way I wanted it. If you’ve seen me around you know that I had chrisrattis.blogspot.org, and I have www.ratsandrogues.com. The first one was ok, but I wanted more control over the site. The second one is for the Podcast I started with Infosec Rogue, and had MWJComputing join recently.

About Me:

I work full time, currently doing Network security audits for application design, designed a point of presence for working with business partners, firewall rule design, and maintaining a web based terminal emulator.

I started my Cybersecurity / Information Security / IT career in doing physical work, changing locks, running cables, building POPs and Data Centers, and then moved in to Network Operation Centers, and System Administration.

I’ve worked in Networking Service, Telecommunication, Automotive, Publishing, and Infrastructure as a Service.

I’m a senior at Eastern Michigan working on my degree in Applied Information Assurance. My classes have included Intelligence Analysis, Cyber Crime Investigations, Cyber Law, Digital Forensics, and Foreign and Domestic Terrorism and Information Warfare

I run the Ann Arbor chapter of TOOOL

I hold the following licences, certifications, certificates and degrees:

  • Associate of Applied Science, Computer Information Systems
  • Associate in General Studies focus on Anthropology
  • Security+
  • Offensive Security Wireless Professional
  • New Mexico Tech Energetic Materials Research and Testing Center – Incident Response to Terrorist Bombings program – Awareness Level
  • Eastern Michigan University Center for Regional and National Security – Incident Response to Weapons of Mass Destruction
  • Technician class Amateur Licenses

I also podcast, teach lock picking, and speak at conferences.