tag:blogger.com,1999:blog-9518042.post7324758223103887504..comments2024-03-19T07:46:20.437-05:00Comments on Windows Incident Response: NRDFIUnknownnoreply@blogger.comBlogger7125tag:blogger.com,1999:blog-9518042.post-81921165898866310142008-08-19T16:35:00.000-05:002008-08-19T16:35:00.000-05:00Thats kind of amusing that it won't be available t...Thats kind of amusing that it won't be available to many of the people who wrote the papers hosted there. You gotta love it. But on a more serious note, won't this be pretty similar to the forensicwiki? Does being LE only make it any better than what we already have?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-9518042.post-15342007087418877562008-08-19T09:37:00.000-05:002008-08-19T09:37:00.000-05:00I think that one of the most interesting things ab...I think that one of the most interesting things about this is that this portal is likely going to populated with stuff from the outside, anyway...presentations, articles, papers, etc. After all, Jim was at BlackHat, right? Stuff from the community, such as BH and DFRWS papers, are very likely going to find their way onto this portal. <BR/><BR/>It's too bad that they won't allow select, vetted individuals access, or even got to them for specific input. I'm not so much asking for access to the portal, as much as I'm offering to review and provide material.H. Carveyhttps://www.blogger.com/profile/08966595734678290320noreply@blogger.comtag:blogger.com,1999:blog-9518042.post-25851586461864930572008-08-19T09:34:00.000-05:002008-08-19T09:34:00.000-05:00I asked Jim Christie from DC3 about this at Black ...I asked Jim Christie from DC3 about this at Black Hat, and he said that LE entities would drop out if this program was opened to the private sector. The LE folks aren't scrubbing or anonymizing the data that is going into the repository, so they feel they cannot open it up. At any rate, I wish them all the best and hope something similar materializes for everyone's use.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-9518042.post-65331431166330010212008-08-19T09:33:00.000-05:002008-08-19T09:33:00.000-05:00I asked Jim Christie from DC3 about this at Black ...I asked Jim Christie from DC3 about this at Black Hat, and he said that LE entities would drop out if this program was opened to the private sector. The LE folks are scrubbing or anonymizing the data that is going into the repository, so they feel they cannot open it up. At any rate, I wish them all the best and hope something similar materializes for everyone's use.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-9518042.post-21683135604547580662008-08-17T20:52:00.000-05:002008-08-17T20:52:00.000-05:00I searched my emails and found I sent my contact i...I searched my emails and found I sent my contact information to them on April 30 on their request. Never heard another thing out of them after that.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-9518042.post-22403839364954829652008-08-16T14:56:00.000-05:002008-08-16T14:56:00.000-05:00The site has a little ways to go in becoming funct...The site has a little ways to go in becoming functional, though what's been promised offers a lot of potential. It appears that many of the "seeded" files are somewhat dated. I certainly share your view on access, though my comments usually fall on deaf ears. <BR/><BR/>IACIS is going to revisit its access policy this year, as I understand things. There does need to be some LE only information exchange, such as details on investigations, suspects, and intelligence. Forensic science, however, thrives on knowledge, which is about the only thing we can't consume in too great a quantity.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-9518042.post-56588449118024126652008-08-16T13:09:00.000-05:002008-08-16T13:09:00.000-05:00I received an email at work about this several mon...I received an email at work about this several months ago. I replied with interest and never heard another thing from them. I sent another email a month or so later asking what the status was and received a reply, but nothing since then.Anonymousnoreply@blogger.com