seminar: Hide and Seek with Hacker Data
 |
Monday, April 27, 2009 |
 |
CyLab Business Risks Forum: Hide and Seek with Hacker Data, An Introduction to Advanced Forensics |
 |
Justin Peltier, Senior Security Consultant with Peltier Associates |
 |
12:00pm |
Talk Abstract
On 8/14/2005, the MetaSploitT group released the anti-forensic package. It has been updated numerous times and this often leads to a hacker having the advantage of hiding files on a compromised machine. Traditional forensics would often miss the hacker data. In this session we will go beyond the anti-forensics package and also look at the role which steganography can play as well. We will discuss how each of these modules work to hide the data and how to uncover it using updated forensics such as data carving, steg tool hunting, and steg file detecting. To conclude we will demo both the hiding of data and the techniques of how to recover this hidden information.
Speaker Bio
Justin Peltier, Senior Security Consultant with Peltier Associates, has over 10 years of experience in firewall and security technologies across a wide range of operating environments and topologies. As a consultant, Peltier has implemented, supported, and developed security solutions, and has taught courses on a variety of topics including vulnerability assessment and CISSP preparation. Peltier formerly directed the security practice development of Suntel Services, and prior to that was with Netigy Corporation, where he served as the company's primary technical instructor in the areas of vulnerability assessment and penetration testing. He has developed and delivered courses for Computer Security Institute, provided instruction for MIS, Netigy Corporation, Suntel Services and Sherwood Associates as well as private instruction for several U.S. federal government agencies and private corporations. Peltier currently holds ten certifications in an array of technical products. Justin writes numerous monthly columns for industry publications and his tenth book is due out this year.