Announcement

Collapse
No announcement yet.

MABS tools and techniques

Collapse
This is a sticky topic.
X
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • submessenger
    replied
    Here's my answer. While I was shooting this video, I think I noticed something else to show the fakery. Next video will center on me trying to recreate this effect to demonstrate how the fakery was done.

    Leave a comment:


  • ChenPengFi
    replied
    The hoaxer's reaction is hilarious.
    "Oh shit what have I done?"

    Leave a comment:


  • BackFistMonkey
    replied
    (2)I reverse imaged searched it (1) after using common sense and found the picture unlikely and fucking stupid(3) found a similar post from snopes

    Leave a comment:


  • submessenger
    replied
    OK, here's a quiz.

    1) Is this a fake?
    2) If so, how did they fake it?
    3) What analysis methods led you to that conclusion?

    GO!



    (edit) I'll give you all a day or two to work the problem. Use your own methods, and/or anything I discuss in the Photo Forensics video, above. I'll be recording my analysis tomorrow morning. No cheating!

    Leave a comment:


  • submessenger
    replied
    Originally posted by ChenPengFi View Post
    Thanks, must have missed that bit.
    I have gimp and paint.net but was looking for online options.
    It can be better to point to a third party site rather than,
    "Well look what happened when I put it in this program and did xyz..."
    when doing forensics.
    Good point. I allude to it a couple of times in the videos, but I still haven't done a chain-of-custody discussion. One of these days...

    Leave a comment:


  • ChenPengFi
    replied
    Originally posted by submessenger View Post
    I highlight a few options in my Photo Forensics video; I suppose I should also post the URLs, here. Or, you can do it yourself using GIMP or Photoshop (GIMP is covered in the video).

    (edit)
    https://www.izitru.com/
    http://fotoforensics.com/


    Thanks, must have missed that bit.
    I have gimp and paint.net but was looking for online options.
    It can be better to point to a third party site rather than,
    "Well look what happened when I put it in this program and did xyz..."
    when doing forensics.

    Leave a comment:


  • submessenger
    replied
    Originally posted by ChenPengFi View Post
    The error level analysis page that was used here in the past is no longer up.
    I found this one but haven't tried it yet.
    https://29a.ch/sandbox/2012/imageerrorlevelanalysis/

    Any other suggestions along those lines for detecting altered images?
    I highlight a few options in my Photo Forensics video; I suppose I should also post the URLs, here. Or, you can do it yourself using GIMP or Photoshop (GIMP is covered in the video).

    (edit)
    https://www.izitru.com/
    http://fotoforensics.com/

    Leave a comment:


  • ChenPengFi
    replied
    The error level analysis page that was used here in the past is no longer up.
    I found this one but haven't tried it yet.
    https://29a.ch/sandbox/2012/imageerrorlevelanalysis/

    Any other suggestions along those lines for detecting altered images?

    Leave a comment:


  • submessenger
    replied
    OK, quick addendum to the HTTrack video. Here, I briefly cover some other HTTrack options, as well as The Wayback Machine and Google cache.

    Leave a comment:


  • submessenger
    replied
    Originally posted by scipio View Post
    I know - if I remember we were scrabbling around trying to save screen shots in a format that could be posted!
    It may seem obvious, today, but a decent way to get screenshots of web sites is to print them to PDF or XPS. There are some quirks with that, but seems like good fodder for another short tutorial.

    That Spencer thread also raises another topic, which is versioning - especially for volatile sites, like that. I'll add that to my list of things to get to, as well.

    Leave a comment:


  • scipio
    replied
    Originally posted by Cake of Doom View Post
    That's true with the Spencer thread. His site was changed so regularly, that the thread got saturated with screen shots.
    I know - if I remember we were scrabbling around trying to save screen shots in a format that could be posted!

    Leave a comment:


  • Cake of Doom
    replied
    Originally posted by scipio View Post
    Really like the demo - HTTrack looks like an incredibly useful tool - wish we had used it when we investigated Richard Spencer the other year.

    Question, you mentioned that when you are downloading the site and you use their bandwidth there is a risk that you might take their website down in what would be an effective DOS attack. Are we leaving ourselves open to potential prosecution?
    That's true with the Spencer thread. His site was changed so regularly, that the thread got saturated with screen shots.

    Leave a comment:


  • submessenger
    replied
    Lesson 3: Introduction to Photo Forensics



    (edit) I knew I forgot something... That's not Crocop, that's W Silva, duh, axe murderer. I can be very dense, sometimes.

    Leave a comment:


  • submessenger
    replied
    Originally posted by scipio View Post
    Really like the demo - HTTrack looks like an incredibly useful tool - wish we had used it when we investigated Richard Spencer the other year.

    Question, you mentioned that when you are downloading the site and you use their bandwidth there is a risk that you might take their website down in what would be an effective DOS attack. Are we leaving ourselves open to potential prosecution?
    Not necessarily. I should have worded that better. What I mean is that it is conceivable that you could tweak the settings up high enough to saturate their bandwidth or saturate your own bandwidth. If you stick with the defaults, you're probably in no danger of causing them trouble.

    Leave a comment:


  • scipio
    replied
    Originally posted by submessenger View Post
    Lesson 1: HTTrack

    Start here, seriously. This is your first step. Do this before you start a MABS investigation.

    In this video, I introduce basic HTTrack usage, and have some fun sifting through images on Ashida Kim's website:

    Really like the demo - HTTrack looks like an incredibly useful tool - wish we had used it when we investigated Richard Spencer the other year.

    Question, you mentioned that when you are downloading the site and you use their bandwidth there is a risk that you might take their website down in what would be an effective DOS attack. Are we leaving ourselves open to potential prosecution?

    Leave a comment:

Collapse

Edit this module to specify a template to display.

Working...
X