SISA Forensics

Our Goal is to strengthen organization information security by helping to effectively evaluate the evidences that can proof the association of a potential threat or any violation of an internal policy by an intended personnel through our specialized, competent and dedicated forensics team. In addition to this we also help organizations in making the best policies and procedures which can generate forensically-proven evidences.

SISA Compliance Program

Fraud Detection: The organization can get evidence from the suspect computer to sue in the court. Our specialized forensic team will seize, collect, analyze and project the evidence with forensically proved tools, technology and methodology that evidence is acceptable in court of law.
IPR Issues Investigation: Violation of any intellectual Property Right such as trademarks and copyrights can be broadly investigated by analyzing the suspect computer, logs (network and security devices), mail account, IM chat history etc. which are not adhering compliance
Email Investigation: Email related threat (Such as Email Spoofing, Email theft, Email sniffing, Identity Theft, Phishing scams, etc. can be identified and evaluated to check the intent of the sender and then doing proof analysis to investigate the source
Compliance & Standards Audit: Compliance and Mandatory standards requirements can be verified for the conformity to the industry standards such as PCI DSS, HIPPA, ISO 27001, etc. which should be verified and examined while an audit
Recovery of crucial data: Data that has been lost accidentally or intentionally and which has a critical business need can be achieved and restore the business process of the organization
Forensic Advisory: Consulting the organization for making policies & procedures to secure assets and investigate fraudulent activities, Includes Expertise Analysis on the evidences discovered post fraud.
   
SISA FORENSICS – PROCESS”
 

Forensic Approach:(Live and Dead)

Live Forensics:- “Methodology which advocates extracting ‘live’ system data before pulling the cord to preserve memory, process, and network information that would be lost with traditional forensic approach”

We examine the evidence offsite in our specialized forensics research lab and strictly maintain the chain of custody.

We provide the flexibility in conducting forensics and manage our approach in accordance with the business need of our client and providing the best forensics practices.


We can perform the following in our Live Forensics Process:-

Ram Data Analysis

Physical Memory Analysis

Rootkit Hunting

File Carving and File Recovery

PDA Forensics

GPS  Forensics

Network Forensics


Data Forensics:-Pull and plug approach where the need of evidence has to be examined and forensically proofed as a standalone point of reference”
We value the necessity of our clients in terms of investigating critically running systems, workstations devices and network components that cannot be shutdown or change from its current state due to loss of integrity or Business risk
Our forensic Research expertise team can initially conduct the live forensic process where the customer wants to obtain evidence from a live critical system. Dead Forensics includes all of the Live Forensic services and the SISA Forensics services.

Our Competency:

Well established Forensics Lab with renowned tools like Encase, Encase Portable, Helix Professional, Forensic Work Station etc.

International Certifications include GCFA Certified (SANS) & GCIA Certified (SANS) and other prestigious Trainings in forensics.

Active research contribution field of Digital Forensics, International Forensic Research partnership with Carnegie Mellon University and National with IIIT Alld.