Presentations

This page is a list of presentations and other speaking engagements Phil has made.

“Network Forensics: The Final Frontier (Until the Next One)”: Traditionally, computer forensic investigations focused on data from static data. Recently, memory analysis has become an integral part of forensic analysis. Now, data from network devices and the wires themselves is becoming necessary to complete our understanding of an event.  By knowing what existing data to ask for and what additional data to collect, we can provide a more comprehensive analysis of an event.

• National Cyber Crime Conference: May 1, 2012; Boston, MA

“What Evil Lurks in the Browsers of Man? The Network Knows!”: New web-based technologies like AJAX permeate the online experience.  What critical evidence may be overlooked while analyzing traditional browser artifacts and how can network forensics fill the gaps in our forensic investigation?

• SANS360 (SANS CDI): December 13, 2011; Washington DC

“Digital Threat 2011″: A look at the evolving threats presented by online actors and how an Information Security strategy can be adopted or modified to better prepare for them.

• Institute of Internal Auditors (IIA) 2011 Mid-Atlantic District Conference: October 20, 2011; Richmond, VA
• US Special Operations Command (USSOCOM) Information Assurance Conference:  August 31, 2011; Tampa, FL

“SQL Ginsu”: How using a database to structure and store large quantities of data from an investigation can simplify and improve the flexibility of the analytic process

• SANS @Night (SANSFIRE): July 21, 2011; Washington, DC