Researchers have been hacking forensics tools for years, but have traditionally focused on techniques that intruders could use to cover their tracks and thwart forensic investigations. The Isec team has taken a different tack, however, creating hacking tools that can be used to pound the software with data, looking for flaws.
What exactly will be disclosed? The Sleuth Kit project has already patched the flaws Isec has found, so those flaws will be made public. Details on EnCase may be released if the product is patched by then, Stamos said. Isec will also release the debugging and “fuzzing” tools it used to find these flaws, he added.