During my master research on Digital Forensic of Data Discovery of Private browsing of Chrome Incognito mode, I run into one major problem. The problem is to uncompress Windows 8 crash dump files to memory dumps file with address that Volatility Framework can parse. The only tool that can achieve this is is moonsols Hibr2Bin and there are only commercial products that I can’t afford. I have to give up from using the result I can collect from Hibernation dump files. I posted for an alternative solution from fellow DFIR practitioners and an interesting twitter conservation started with Volat...

Intro & Aim This is a gist of tools and softwares that helps for the academic researchers to improve their productivity and organization. The tools are based on personal experience and inputs from the colleagues. Due to my Computer Science background, I like to explore software tools that can automate and make things easier without complication. I categorize the tools by similar product categories with brief explanation of what this tool can help you in the research process. Paperless literature At the early stage of research, we deal with tons of papers and articles. We print them o...

I am an expat living in Bangkok and rely on public transportation to avoid high traffic of Bangkok. I like to read/think and text during the daily commute to the office. As for commuting to a destination disconnected to train or bus, I have to use public taxi to get there. Lately, I’ve been using Uber instead of public taxi service for these reasons: Communication problem with taxi driver. Language barrier. Tricky taxi driver driving around the unnecessary route. Refusing to go to some high-traffic destination. Comfort. Safety. I ran into 2 blog entries that highlights some as...

Facebook integrates chatbot feature to its messenger platform and all AI chatbot enthusiasts are rolling out their cool ideas into the platform. This is a few chatbots that I personally like and use it at this moment: Jarvis Just a simple bot to remind tasks through a message at a specific time. WTFIT Send a pic of anything and it identifies the objects. Hooks News Junkie? This is the one for you. it send updated news from your favorite websites. Smokey Are you concerned about air quality? Smokey gives you all the content you need about pollution around your town. A...

I suggests you to read this essay [on cybersecurity and being targeted](http://www.kennethreitz.org/essays/on-cybersecurity-and-being-targeted) before continuing this entry. The cyber-attacks are getting more focus and intelligent than ever. The attackers have specific objectives, methodologies and strategies to achieve their goals with high persistence. So, Human is the major vulnerable point in organization security and by strengthening your personal security, you can avoid from being a poential vulnerable target. Traditional username/password is not a strong and secure authentication m...

Windows 10 introduces a feature I really love from Linux Window manger called multi-workspaces or “Virtual Desktops” as MS term. Due to the requirement of Work place network restrictions and It’s working well but I believe it’s still missing several useful features compared with Linux DE/WM like Ubuntu Unity, Mate or Cinnamon. The entry is not about what Windows 10 Multitasking features are. It’s about what are missing at Windows 10. You can find many blog entries that talk about capabilities of Windows 10 multi-tasking. Here is a few of them: Multitasking by msdn 6 multitasking tips...

What’s wrong with passwords? Every one might agrees that passwords are difficult. They can be forgotten. They are easy to be revealed by phishing, key-logging and other social engineering attacks. Strong passwords need to have many factors and complex combination to avoid brute-force attacks and dictionary attacks and the main problem is people tends to use easy to get personal information as passwords instead of high complexity passwords that take years of enumeration time to decrypt it. Traditional authentication process is not reliable anymore and 2nd factor authentication (2FA) and mu...

Back to previous blog post on the issues with Burmese digital writing fonts standard, people are still pointing fingers and a fool-proof solution is far away to settle on either Zawgyi or else. A friend shares me a Facebook post about a new font, Pyidaungsu Zaw Decode, that created by a researcher who is working at Myanmar Unicode & NLP Research Center. The font promises to render both Unicode and Zawgyi fonts and it seems to have a high potential to tackle the issue. The following is download URLs for True Type font and Android APK executables. TFF APK This blog is to review an...

Introductory The purpose of this article is to list down books and learning resources for Digital Forensic self-learners and new comers. When I was started learning about fundamentals and principles of Digital Forensic and Incident Response, I had a hard time looking for the starting point. Also, most of the learning tutorials and training courses are not free. This is my collection of resources for newcomers to Digital Forensic research area. Publication Journal Thanks to the Digital Investigation Journal from Elsevier publication. I got a hand on high quality research papers and trend ...

Miniature Calendar This mini-project started from another design project called Miniature Calendar. It’s a beautiful creative project, which creates real world scenes with small scaled objects. The author of the project posts 1 creative idea per day in a chronological order. The only way to get access and acquire these images is by visiting project social media pages or the project official website. I was just thinking a way to download these photos into my local image repository and enjoy as wallpaper and so on. So, why not analyze the site structure and try to scrap these images for ins...