Technical Level: Advanced

Speaker: Larry Gagnon and Robert Beggs
One of the most exciting area in the field of data forensics is live system response - the collection and analysis of forensic evidence from a live system that has been compromised, or during the actual attack itself This seminar will demonstrate the process for responding to a security incident involving a live system, including a hands on demonstration of tools and a walk through of writing and using a script for automated data collection By the end of the seminar, you will know how to collect the maximum amount of information from a live system before starting more conventional forensic analysis of a system hard drive

Also - From logfiles to litigation… Larry Gagnon will provide his perspective on collecting electronic evidence, some of the pitfalls to avoid and how to make it count in court.

Presentation: Live Response - Collecting Volatile Evidence - PDF
Presentation: From Log Files to Litigation - PPT Here