Defcon 21 - Forensic Fails - Shift + Delete Won't Help You Here

That CP one was actually horrifying because it meant without the work of these two brilliant analysts that poor guy would have been found guilty along with all the stigma that goes along with being a known paedophile.  That guy's life was literally on the edge of the knife.

best wiping pattern ever.

I wiped my drive at my former employer simply because I had all my passwords saved and I didn't want anything left behind. Kinda scary to think that could have been enough to prove I stole anything and bankrupt me, ruining my future for ever.

One of my Favourite Defcon Talks that i keep cming back to when i need a laugh.

this is pretty interesting, but goddamn, these guys are some turbonerds

Wait, you gave the guy crap for having Nickelback albums, but he didn't! They were just porn renamed so nobody would open it!

Which one should I drink from? "yes"

Defcon - the drinking game

Seems like there should be a subtitle of "Don't use Windows, unless you want to get caught" lol

Who needs Big Bang Theory when you have real-life awkward nerds like these guys.

I do have a problem with case #1. If this is all of the evidence they had against him, there is no way he should have been found guilty, at all. They can tell you deleted something, okay, but without KNOWING what was deleted and unrecoverable they have nothing but speculation. I am hoping there was actual evidence to base the verdict on, but the way the legal system works in this country now, it is actually very possible that they did not and used the sole fact that he deleted something unknown to base their decision on.

The banter between the two for drinking a single beer is excruciating.

Ugh this is back when everyone was yelling "fail" all the time.

Maybe the RDP guy was clever, connecting to a first computer with RDP without his printers, then sharing the printers of the subsequent machine?

The last one was brutal, but is also shows just how horribly bad things can go when you have the wrong people against or for you. That poor guy basically had to uproot his whole life and start fresh, which a few million dollars might help with but it is mostly just a small help getting started.

Michael seems a little nervous... however, his explanations are clear AND he makes good jokes ^^ Eric Rob is quite the connoisseur in fraud. Very nicely put. Thanks for all this info and laughter guys :)

Based on the technical skill shown here I guess I could be running my own computer forensics company

I learned a lot, but oh my god these meme spouting nerds, I mean I'm as nerdy as the next guy but even I would give these guys some wedgies.

so, according to #1 people can sue you for using a drive wiping program if you can just vaguely connect a case to you

Hmm, overwriting sectors, even with random data, can almost always be detected? What if you had a destruction tool that grabbed blocks of data from a non-deleted file, and used that to overwrite the deleted data? To make it look like a different file had been on those blocks, and had been deleted?