Facebook Forensics

The booklet I read to research this post was Facebook Forensics by various authors which is an excellent ebooklet which I downloaded from Kindle. There is quite a lot of software that can be used in conjunction with forensic examinations of facebook accounts & I think it would be wrong if I mentioned all the software in the book. There is 2 major types of investigation of facebook accounts, the first is people like paedophiles trying to groom under age children, the second is people trying to sell things like drugs. Anybody over 13 can join facebook but there is an estimated 7.5 million members under that age. When someone is suspected of one of these crimes typically their computer and/or smartphone is seized. One thing it didn't mention in this book is that any social media site can access anything you have said on their site. However the hassle involved in getting them to hand over that data is probably not worth the bother. Anyway typically they will want to access your browser history & the only program on the market that works with the 5 most common browsers which is also open source & is easy to use is cachekeep. Something I'll mention is if you are interested in a career in digital forensics there is such a shortage in britain that a lot of the things like computers that are seized are never checked & there is a long waiting list for the ones that are checked. They often use MD5 to make a copy of the hard drive & of course a write blocker has to be used to make sure an exact copy is made. If you are interested in digital forensics I have done several posts on the subject on my computing blog at http://scratbag.me/
In addition I have done a post on xbox 360 forensics at http://scratbagroberts.com/
That's my technology blog.
Encase & Sleuthkit are often used to determine what is on a computer. Sleuthkit is open source but Encase is retail software. Also you might need to crack passwords I recommend John the Ripper & Kain & Able both of which are open source.