The DFIR Research list is a list of potential digital forensic and incident response research projects contributed by community members in hopes of these topics being researched with information disclosed publicly. The AboutDFIR.com team hopes that this can help those new to the field or researchers looking for relevant topics to pursue. This is a great opportunity to propose topics that you have not had time to research or resources you wish existed within the #DFIR and #InfoSec communities. This is also an opportunity for researchers and mentors alike to bring together their unique capabilities, skill sets, and knowledge on a project. To contribute to this page you can propose a topic, volunteer to research, or volunteer to mentor. AboutDFIR.com does not own the research (unless explicitly stated or requested by the researchers), nor does it provide any guidance or team oversight. At present, the AboutDFIR.com team is strictly providing a central location and repository for the betterment of the community at large.
Looking to submit a Research Idea or Request? Use the form.
|1||Search Engines: Bing.com||Bing.com search engine URL parsing.||Not Started|
|2||SIM card/PUK Unlocking||PUK unlocking for SIM Cards||Not Started|
|3||ISP pinout for Alexa Show||Easy for someone with experience, but there is a fair amount of training or experience and equipment required to perform this work.||Jessica Hyde (@B1N2H3X)||Not Started|
|19||Image Creation: Android Pie (9.x)||Forensic image for public consumption, testing, and educational purposes of device running Android Pie (9.x) with robust documentation.||Not Started|
|18||Memory Acquisition||Compare the data obtained and acquisition time/ease of use of current memory acquisition tools on Windows 10.||Liban Mohamud (@coolx28)||Liban Mohamud (@coolx28)||In Progress|
|6||Image Creation: Android Marshmallow (6.x)||Forensic image for public consumption, testing, and educational purposes of device running Android Marshmallow (6.x) with robust documentation||Not Started|
|7||Image Creation: Android Nougat (7.x)||Forensic image for public consumption, testing, and educational purposes of device running Android Nougat (7.x) with robust documentation||Jessica Hyde (@B1N2H3X)||@josh_hickman1||Complete||link|
|8||Image Creation: Android Oreo (8.x)||Forensic image for public consumption, testing, and educational purposes of device running Android Oreo (8.x) with robust documentation||Jessica Hyde (@B1N2H3X)||@josh_hickman1||Complete||link|
|10||Search Engines: Quora.com||Quora.com search engine URL parsing.||Not Started|
|13||Image Virtualization: Android||Virtualization of Windows based images is incredibly useful for investigations, so virtualisation of Android images (both physical and file system images) could be very helpful.||Not Started|