Online Incident Reporting

CSIRT Development

Publications

Forming an Incident Response Team (IRT)

Learn more

CSIRT Training

The following organizations provide a variety of training targeted specifically to CSIRTs including development, design, implementation and operations

Learn more

CSIRT Computer Forensics

Certifications

Mr. Martinez holds the EnCase Certified Examiner (EnCE) certification from Guidance Software and a Professional Development Certificate in Computer Forensics from Oregon State University and holds an active Top Secret Clearance (SSBI).

EnCE Certification (http://www.encase.com/training/ence/referrals.asp)

Oregon State University - Computer Forensics Certification (http://www.forensics-intl.com/osu3day.html)

Forensic services include:

  • Identify and preserve evidence (coordinating efforts to preserve evidence of the incident)

  • Mirror imaging (copying) of digital evidence from desktop computers, laptops, servers, floppy disks, CD-ROMs, back-up tapes, PDAs and digital cameras

  • Identifying and extracting relevant data through keyword searches and other techniques

  • Providing file listings and file exports on a CD-ROM for client review

  • Recover deleted files — including E-mail, word processing and graphical images

  • Bypassing/cracking password-protected files

  • Technical assistance to prepare and execute electronic discovery requests

  • Providing testimony and opinions as expert witnesses

Our goals include:

  • Quickly find relevant information and develop additional investigative leads

  • Develop a timeline of usage for both active and deleted files, including Internet activity Review evidence to determine context and relevance

  • Discover attempts to conceal, fabricate, or destroy evidence

  • Produce a user-friendly, accurate and detailed report of findings and recommendations

  • Developing an accurate and detailed report of findings and recommendations

Security News Updates

      
    foreground (text) color; default is blackbackground color; default is whitecolor for non-highlighted links; default is bluecolor for highlighted links; default is redscroll speed (in ms): larger is slower; default is 40Verdana (in ms) to wait on paused lines; default is 2000stop scrolling when mouse is over applet? default is YESdisplay initial "wait" message? default is to displayfont to use for text display; default is Helveticafont size to use for text display; default is 10size of horizontal padding area around text; default is 5size of vertical padding area around text; default is 5
    Add this News feed to your site

Threat Assessments

InfoCon Alerts


InfoCon 1: Peacetime
InfoCon 2: Heightened alert
InfoCon 3: Full alert
InfoCon 4: Internet Meltdown


Learn more

Security Bulletins

Daily and weekly summaries of security issues and new vulnerabilities.

Learn more