This 13Cubed episode covers an exciting new tool from Kroll and Eric Zimmerman called KAPE. From the developer, KAPE is an efficient and highly configurable triage program that will target essentially any device or storage location, find forensically useful artifacts, and parse them within a few minutes.
Links:
13Cubed KZbin Channel:
/ 13cubed
Introducing KAPE (Kroll Website):
www.kroll.com/...
Introducing KAPE (Eric Zimmerman's Blog):
binaryforay.bl...
Background Music Courtesy of Anders Enger Jensen:
/ hariboosx
Bio:
Richard Davis has more than 24 years of information technology experience, with more than 12 years of that time focused on information security. Throughout the past four years, Richard has specifically concentrated on digital forensics.
Richard received his first computer in 1984 at the age of seven, and became immediately enamored with technology. After graduating high school, he enrolled in college and opened his own computer company, providing high-performance custom-built PCs, service, networking, consulting, and training services for businesses and individuals throughout the North Georgia area. He sold the company after 10 years, and then spent nine years at a state college within the University System of Georgia. While there, he served as Network Support Specialist, Information Security Officer (ISO), and later Chief Information Security Officer (CISO).
Richard currently serves as Executive Director of IT Security for Embry-Riddle Aeronautical University. Richard has a Bachelor of Science in Cybersecurity from the University of Maryland University College, and holds numerous industry certifications, including GCFE, GCFA, GNFA, GREM, CISSP, CCNP Security, and CCNP Routing and Switching.
Richard also creates KZbin videos covering digital forensics and incident response, writes software for macOS and iOS, and is very involved in the information security community.