Your SlideShare is downloading. ×

Thanks for flagging this SlideShare!

Oops! An error has occurred.


Saving this for later?

Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime - even offline.

Text the download link to your phone

Standard text messaging rates apply

Digital Forensics: Digital Evidence That Endures


Published on

Booz Allen Hamilton has extensive experience conducting digital forensics investigations for diverse clients in the defense, civil, commercial, and intelligence sectors.

Booz Allen Hamilton has extensive experience conducting digital forensics investigations for diverse clients in the defense, civil, commercial, and intelligence sectors.

Published in: Technology

  • Be the first to comment

  • Be the first to like this

No Downloads
Total Views
On Slideshare
From Embeds
Number of Embeds
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

No notes for slide


  • 1. Cyber exploitation and malicious activity have become increasingly sophisticated and targeted. Public and private sectors face increasing challenges in protecting their intellectual capital and critical enterprise IT assets. Many digital forensics groups have difficulty keeping up with the demands of this industry and responding to the trends in attacks. Booz Allen Can Help with Comprehensive Digital Forensics Solutions At Booz Allen Hamilton, a leading strategy and technology consulting firm, we provide services to leading corporations, government and other public agencies, emerging growth companies, and institutions. We have extensive experience conducting digital forensics investigations of varied sizes and scopes for diverse clients in the defense, civil, commercial, and intelligence sectors. We offer professionals who are highly experienced in digital forensics. We also have more than 1,000 information assurance (IA) professionals, many of whom have high-level government clearances. In addition, we offer training in forensics best practices to improve your organization’s internal forensics capability. Our experts have experience training local, state, federal, and corporate investigators in the latest incident response and forensics analysis techniques. Our Digital Forensics Services and Approach Booz Allen offers major areas of digital forensics expertise, including the following: • Intrusion analysis • Host-based analysis • Malicious code analysis • Incident response and management • Data theft and exposure analysis • Vulnerability, threat, and risk management About Booz Allen Booz Allen Hamilton is a leading provider of management and technology consulting services to the US government in defense, intelligence, and civil markets, and to major corporations, institutions, and not-for-profit organizations. Booz Allen is headquartered in McLean, Virginia, employs approximately 25,000 people, and had revenue of $5.86 billion for the 12 months ended March 31, 2012 (NYSE: BAH) For more information contact Thomas Chandler Principal 301-821-8968 Mark Eckert Senior Associate 210-932-5612 Anthony Harris Senior Associate 301-419-5119 S T R A T E G Y & O R G A N I Z A T I O N | T E C H N O L O G Y | E N G I N E E R I N G & O P E R A T I O N S | A N A L Y T I C S Digital Forensics Digital Evidence That Endures
  • 2. Our Proactive Threat Identification (PTI) program is the most comprehensive digital forensics solution available. Booz Allen has developed the PTI program to go beyond the normal approach to investigations. In addition to standard forensics services, PTI focuses on identifying indicators of compromise. PTI uses our proprietary Automated First Responder (AFR) to identify a range of threats—from internal malfeasants to organized criminals and nation-state adversaries—using highly targeted client-side attacks such as spear-phishing to compromise fully patched systems that have up-to- date antivirus systems. PTI is a proven, successful tool. It is a digital forensics and incident response utility designed to quickly collect specific information from a system, enabling its users to successfully identify malicious code. AFR has proven its effectiveness in situations when anti-virus, host-based intrusion detection systems or rootkit detectors have been unable to detect malicious code. We can tailor custom AFR builds to client networks and use them to push changes to hosts and remediate discovered compromises. See our ideas in action at 04.093.13B