beyond extreme forensics update 3q / 2016 by alvaro soto
TRANSCRIPT
![Page 1: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/1.jpg)
![Page 2: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/2.jpg)
© Legal Disclaimer…
CopyrightDisclaimerUnderSec6on107oftheCopyrightAct1976,allowanceismadefor"fairuse"forpurposessuchascri6cism,comment,newsrepor6ng,teaching,scholarship,andresearch.FairuseisausepermiDedbycopyrightstatutethatmightotherwisebeinfringing.Non-profit,educa6onalorpersonaluse6psthebalanceinfavoroffairuse.Allmaterials/trademarksusedinthispresenta6onbelongtotheirrespec6veowners.
![Page 3: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/3.jpg)
What we do in Forensic Lab…
![Page 4: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/4.jpg)
What we do in the forensic lab…
![Page 5: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/5.jpg)
Goals for this update from the lab...
Takeaquicklookaround:
• Share“storiesfromtrenches”• Giveanawarnessofpoten6alissues/fixes• GiveyousomeresourcesforR&DandFunJ• Ques6ons/Answers…
AlvaroAlexanderSoto-LabDirector/[email protected]
![Page 6: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/6.jpg)
HDD Storage components review.
![Page 7: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/7.jpg)
HDD Storage components review.
![Page 8: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/8.jpg)
Our main resources… and suggesBon for you to use too..
AlvaroAlexanderSoto-LabDirector/[email protected]
![Page 11: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/11.jpg)
Inside HDD… Diags..
• SAcorrup6on..• Motorstuck..• Heads..• Electronics..• Scratches..• ESD• Sounds/Clicks• Naturalelements…
![Page 12: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/12.jpg)
SA in somewhere…NegaBve Tracks..?
• -1FFFFh• -2FFFEh• Etc…
![Page 13: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/13.jpg)
Seagate DiagnosBc Serial Port
![Page 14: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/14.jpg)
Tools..
![Page 15: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/15.jpg)
SA vulnerability / Fix…
• ATAPwd• Change/Off-H• HPA/DCO• Malware/Codeinjec6on• Hiddendata/Tools• S/N• ….
![Page 16: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/16.jpg)
Tools / RE Cracks / Filesystem Hacks
![Page 17: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/17.jpg)
Sample Scenario: Data theQ problem..
• SEDHDDsolu6onshererightnow!!!
• Reallyasolu6on?.....
• Letstakealookaround…
![Page 18: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/18.jpg)
SED HDD
![Page 19: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/19.jpg)
SED HDD
![Page 20: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/20.jpg)
Playing Cops and Robbers
![Page 21: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/21.jpg)
![Page 22: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/22.jpg)
• BIOSMods
![Page 23: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/23.jpg)
Job Done…lets go back to home
![Page 24: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/24.jpg)
Resources • hDps://www.itosaka.com/WordPress/wp-content/uploads/2009/07/Seagate-Diagnos6c-Command.pdf• hDp://openocd.org/
AlvaroAlexanderSoto-LabDirector/[email protected]
![Page 25: Beyond eXtreme Forensics Update 3Q / 2016 by Alvaro Soto](https://reader031.vdocuments.us/reader031/viewer/2022030304/587a146d1a28abb4238b4fa9/html5/thumbnails/25.jpg)
THANKS!!!
Q&A–Experiencesharings...