Forensic Timeline Analysis using Wireshark GIAC (GCFA) Gold Certification

The objective of this paper is to demonstrate analysis of timeline evidence using the Wireshark protocol analyzer. To accomplish this, sample timelines will be generated using tools from The Sleuth Kit (TSK) as well as Log2Timeline. The sample timelines will then be converted into Packet Capture...
David Fletcher
August 10, 2015

All papers are copyrighted. No re-posting of papers is permitted