Intrusion Forensics
Intrusion forensics encompasses the acquisition and analysis of data from network enabled IT systems by way of forensically sound methodologies and techniques. The primary objective of intrusion forensics is to identify the author or initiator of suspicious network based activity, and to gather evidence in the event that a prosecution or civil action is launched.
Whether it is the forensic acquisition of evidence in cases of unauthorised system access, malicious code attacks, denial of service attacks, phishing attacks or electronic identity theft, the e.forensics team at e.law has a wealth of experience in ensuring that key evidence is identified, captured and properly analysed.
Drawing on the extensive experience of our e.forensic professionals together with a proven intrusion forensic methodology, our intrusion forensic service can help you by:
- Identifying potential sources of electronic evidence
- Capturing evidence in real time
- Analysing electronic and transactional data
- Analysing suspected malware
- Reconstruct past activity
- Providing expert interpretation of electronic data
- Ascertaining the electronic facts