Network Forensics

Network forensics is a subfield of digital forensics focusing on the monitoring and analysis of communication network traffic in order to collect information about online user behavior, login attempts, email attachments sent, files downloaded, etc., and find anomalies for malware infection and intrusion detection, with the ultimate aim to gather legal evidence admissible in court.

Related Publications

  • Cabral, W., Valli, C., Sikos, L. F., Wakeling, S. G. (2019) Review and Analysis of Cowrie Artefacts and Their Potential to be used Deceptively. 2019 International Conference on Computational Science and Computational Intelligence. IEEE (to appear)
  • Sikos, L. F. (2019) Knowledge Representation to Support Partially Automated Honeypot Analysis Based on Wireshark Packet Capture Files. In: Czarnowski, I., Howlett, R. J., Jain, L. C. (eds.) Intelligent Decision Technologies 2019, vol. 1, pp. 345–351. Springer, Singapore. DOI: 10.1007/978-981-13-8311-3_30