Bugtraq: Re: Guidance Software response to iSEC report on EnCase

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Guidance Software response to iSEC report on EnCase

From: luke.cleverley () gmail com
Date: 16 Aug 2007 04:12:16 -0000

Guidance, in its response to ISEC report, stated on more than one occasion:-
"Also, by corrupting the NTFS partitions, the perpetrator would likely render his file system dysfunctional, which 
calls into question both the likelihood and feasibility of such a tactic. Thus, the chances of this specific scenario 
occurring in the field are extremely remote;"

A perpetrator, suspecting intervention by lawful authorities, and with time to spare, may use just this tactic to 
specifically avoid detection.

By Date By Thread

Current thread:

RE: Re: Guidance Software response to iSEC report on EnCase Alex Stamos (Aug 02)
- <Possible follow-ups>
- Re: Guidance Software response to iSEC report on EnCase luke . cleverley (Aug 17)