Heuristic Reasoning with Python and EnCase
Speaker: Chet Hosmer , Python Forensics, Inc.
Session Description: CEIC 2015
Applying scripting languages to the art and science of digital investigations is certainly not new. However, with the advancements in EnScript and EnCase App Central paired with the rapidly growing interest in Python; 1+1 may very well equal 11. This lab-demo will demonstrate the integration of Python with EnCase and provide open source templates. More specifically it will demonstrate how to apply natural language understanding and heuristic reasoning using Python; based on evidence directly collected and processed by EnCase.
– Define the value of using heuristics and natural language
– Demonstrate Python Language Heuristic and Natural Language methods
– Provide full open source for these new methods
Chet Hosmer is the Founder of Python Forensics, Inc. a non-profit organization focused on the collaborative development of open-source investigative technologies using the Python programming language. Chet has made numerous appearances to discuss emerging cyber threats including National Public Radio’s Kojo Nnamdi show, ABC’s Primetime Thursday, NHK Japan, CrimeCrime TechTV and ABC News Australia. He has also been a frequent contributor to technical and news stories relating to cyber security and forensics and has been interviewed and quoted by IEEE, The New York Times, The Washington Post, Government Computer News, Salon.com and Wired Magazine.
Chet is the author of three recent Elsevier/Syngress Books: Python Passive Network Mapping: ISBN-13: 978-0128027219, Python Forensics: ISBN-13: 978-0124186767 and Data Hiding which is co/authored with Mike Raggo: ISBN-13: 978-1597497435.