Computer Forensics

Credit Card Grep for EnCase

I was a given a challenge by a colleague to come up with a god grep for credit cards. He had come up with a fairly complicated grep statement that looked for them specific to the domains in which each company operates – one for American Express (3…


A Better IP Address GREP For EnCase

I was recently teaching a colleague about the use of keywords in EnCase, and in highlighting grep usage, we came across the default Guidance IP address grep string: 0|([3-9]#?)|(1#{0,2})|(2([0-4]#?)|(5[0-5]?)|[6-9]).0|([3-9]#?)|(1#{0,2})|(2([0-4]…