BlockWatch at the Academy of Forensic Science Conference

Saturday, 05 March 2011 05:45 Last Updated on Sunday, 10 April 2011 23:48 Written by adminsuper 0 Comments

Computer  Forensic  Bitmaps  and Visualization for Data Identification

The presentation demonstrated BlockWatch’s ability to identify known data in a opaque data region and generate graphics (bitmaps) that show detected fragments as like color’s.

BlockWatch embed’s the MetaData id into the bitmap as the color.  This means, the image can be used to query the BlockWatch MetaData XML (i.e. correlate  blue <=> msword.exe).

presented by: Shane A. Macaulay

Tags:  , , ,
This entry was posted on Saturday, March 5th, 2011 at 5:45 am and is filed under Blog. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply