Chat log file analysis – After Conversation

Duration

July 2005 – December 2007

Internal Participants

Kim Morfitt, Craig Valli

External Participants

WA Police Computer Crime Tim Thomas

This was an undergraduate project resulted in the production of a tool for forensic analysis of ICQ (on-line chat tool) log files. The tool allows reconstruction of conversations held by two parties by analysing the binary log files. Chat tools are used by criminals eg pedophiles or rapists to groom victims. These chat tools are also extensively used by criminal gangs and terrorists to organise. The ability to forensically analyse these log files is of critical importance in many investigations.

This project is now continuing on as a honours project with the student now expanding the repertoire of log files from chat systems that can be analysed.

Outcomes

Release of After Conversation 0.2 to law enforcement

Publications

Morfitt, K. and Valli, C. (2005). After Conversation – An Forensic ICQ Logfile Extraction Tool, In Proceedings of the 3rd Australian Computer, Network & Information Forensics Conference, School of Computer and, Information Science, Edith Cowan University, Perth, Western Australia, pp. 54-61.

Events

March 2010
MonTueWedThuFriSatSun
  
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31  

Latest News

Open Source Intelligence: Tradecraft & Tools – 12 March

February 25th, 2010

There has never been anything in the history of humankind that comes close to the ability of the Internet to reach to almost every part of the globe.  But, as with all new technologies, it comes at a cost—many costs, in fact.
The first Google index in 1998 captured 26 million pages, and by 2000 the [...]

secAU Special Interest Group Seminar: VoIP something old something new

February 5th, 2010

Over 30 years ago the “holy grail of hackers was the compromise and utilisation of PABX systems to enable free phone calls for voice and of course data at that stage. In response to this phenomenon PABX systems became increasingly secure and less able to be compromised. Now some 30 years on we now have [...]