homepage
Open menu
Contact Sales

Cloud Storage Forensics: Endpoint Evidence

  • Tuesday, 03 Dec 2019 3:30PM EST (03 Dec 2019 20:30 UTC)
  • Speaker: Chad Tilbury

An often overlooked area of cloud forensics is data and metadata stored on the local device. 'Unsurprisingly, devices which have synchronized to a cloud storage service may contain a wealth of information relevant to an investigation. Devices regularly record metadata on locally synchronized files in addition to files only present in the cloud. 'Deleted items may still be recoverable, and files may be present in cloud storage cache folders even when they were not selected for local synchronization. 'In short, cloud storage data can be more accessible on the local device and can contain files and metadata distinctly different than the current cloud repository. 'However, endpoint collection includes its own set of challenges. 'In this webcast, SANS Senior Instructor Chad Tilbury will discuss these challenges and provide a strategy for ensuring you are not missing critical evidence in your investigations. '

Login to Register

Related Content

Blog
Quest_to_Summit_340x340.png
Industrial Control Systems Security, Digital Forensics, Incident Response & Threat Hunting
The Quest to Summit | SANS ICS Security Summit 2024
Register for the ICS Security Summit to be able to participate in The Quest to Summit and win big prizes.
370x370_Tim-Conway.jpg
Tim Conway
read more
Blog
N2C_blog_image.png
Security Awareness, Cybersecurity Leadership, Cloud Security, Open-Source Intelligence (OSINT), Industrial Control Systems Security, Digital Forensics, Incident Response & Threat Hunting, Cybersecurity and IT Essentials, Cyber Defense, Offensive Operations, Pen Testing, and Red Teaming, CyberLive, Workforce Development, Career Development, Why Certify, Imposter Syndrome, NetWars, Mentorship, Job Hunting, Operating System & Device In-Depth, Artificial Intelligence (AI)
A Visual Summary of SANS New2Cyber Summit 2024
Check out these graphic recordings created in real-time throughout the event for SANS New2Cyber Summit 2024
370x370-person-placeholder.png
Alison Kim
read more
Blog
Blog: Google Chrome Platform Notification Analysis
Digital Forensics, Incident Response & Threat Hunting
Google Chrome Platform Notification Analysis
In this post, Chad Tilbury uses the new Arsenal Recon LevelDB Recon tool to examine the Chrome Platform Notifications database.
370x370_Chad-Tilbury.jpg
Chad Tilbury
read more