Identifying Computers Behind NAT

Editors Note: a follow up post that provides code to use this technique without pyflag has been combined with this one I've been a bit busy recently as I'm preparing to move across the world to the US to work at a small Internet company in the SF Bay Area. In the mean time though my current employer has been kind enough to let me contribute back some of the code we have written for…

Read more →

py360 - Xbox 360 File System Tools

I'm releasing the code and docs that I wrote during my Xbox 360 research. py360 is a FUSE filesystem driver and associated file parsers for reading Xbox 360 hard drives. It is designed to aid forensic examination of the Xbox 360. The main components are a FUSE file system for mounting the XTAF file system and a set of python classes for parsing the the STFS, XDBF and Account block file formats and the XTAF file system.

Read more →

Xbox 360 Forensics

My research activity is coming to a head and I thought I'd let you all know how it is going. My early explorations were plagued by a plethora of hardware and software failures. The Xbox 360 thoughtfully provided to me by my University had a damaged hard drive which took me longer than it should to diagnose because I had to eliminate my procedure and imaging equipment as possible sources of errors. My setup is a…

Read more →

Xbox 360 Forensics (part 2)

Lately my blogging energies have been redirected into my study, namely a communications plan and a research proposal. The communication plan was for a persuasive communications class and the aim was to be able to devise a plan that could realistically alter the attitudes (and hopefully the behaviour) of an audience, it was a fascinating exercise that I don't plan on repeating any time soon. It turns out that I'm not much of a public…

Read more →