New Anti-Forensics Tools Thwart Police 528
rabblerouzer writes "Antiforensic tools have slid down the technical food chain, from Unix to Windows, from something only elite users could master to something nontechnical users can operate. 'Five years ago, you could count on one hand the number of people who could do a lot of these things,' says one investigator. 'Now it's hobby level.' Take, for example, TimeStomp. Forensic investigators poring over compromised systems where Timestomp was used often find files that were created 10 years from now, accessed two years ago and never modified."
Time Stamps? (Score:5, Funny)
Pfft. (Score:5, Funny)
- RG>
Ah, the police... (Score:5, Funny)
I prefer hardware solutions, rather than software ones.
deja vu (Score:2, Funny)
thats really odd, i seem to remember seeing something similar on our domain controller a few minu
Re:Pfft. (Score:5, Funny)
FILE0001.CHK
...
FILE0002.CHK
FILE0003.CHK
FILE0004.CHK
FILE0005.CHK
FILE9999.CHK
Unable to find COMMAND.COM. Please insert system disk and press reset.
Re:Time Stamps? (Score:5, Funny)
Holy Crap (Score:1, Funny)
Willunwhen the file istobe created... (Score:3, Funny)
Uhh - got to work on my future imperfect past continuous tense.
Re:Never trust the computer! (Score:5, Funny)
Re:A year ago... (Score:5, Funny)
Re:Holy Crap (Score:2, Funny)
Re:Ah, the police... (Score:3, Funny)
Re:Touch (Score:3, Funny)
>
>Yes, yes.
>
>Five years ago (2002) there were five people (or less) that knew touch.
Er, assuming they're using 5 fingers (inc. thumb) then that should be *31* people or less...
>
>Lol. The guy is a moron.
*He's* a moron?
What's that strange gesture you're giving me with your hand? You trying to tell me '4' for some reason?? Hrm...odd.
Re:Here's a real good one (Score:3, Funny)
Oh, and IIRC, withholding the password would be obstruction of justice (assuming they obtained a warrant for the data protected by the password, as per the 4th amendment)
Re:Here's a real good one (Score:5, Funny)
withholding the password (Score:4, Funny)
Couldn't you choose an incriminating password and plead the 5th?
Re:Here's a real good one (Score:3, Funny)
Well, it usually does. Unless, of cousre, you're using ROT-13 for your original encryption.
Re:Pfft. (Score:5, Funny)
It's the only way to be sure.
Re:Working drive at 700+F? (Score:1, Funny)
Re:withholding the password (Score:3, Funny)
Re:Pfft. (Score:3, Funny)
"Infact, its the fastest running, most secure version of windows ever."
But, like you said, you can't run anything on it either!
Re:Never trust the computer! (Score:3, Funny)
Re:oh geez... the "police" (Score:1, Funny)
Re:Here's a real good one (Score:1, Funny)
No..... No, Just No. (Score:3, Funny)
You say "umm... there isn't a hidden container... there's nothing more there..."
The DA continues to smile. "Prove it to me."
You say "Actually, you have to prove to me that there's anything there to hide. You should know that I'm innocent until proven guilty."
Then you walk away scott free. The DA continues to smile for some reason, probably too much crack this morning.
Re:Pfft. (Score:2, Funny)