For the best user experience please upgrade your browser

Digital Forensics Services

Done properly digital forensic (DF) investigations save your business time and money. Devices provide a wealth of evidence sources that can be used to prove or disprove facts.

The aim of DF is to identify, collect, preserve, and analyse data in a way that preserves the integrity of the evidence collected. This is so that it can be presented in a legal process, whether that be a civil or criminal court hearing, tribunal or internal disciplinary procedure.

Why Pen Test Partners?

Pen Test Partners (PTP) DF consultants have many years of knowledge and experience of conducting complex DF investigations.

Whether you are looking for investigation support in a civil or legal dispute, complex litigation, financial fraud, internal disciplinary matter or a potential insider threat, we can help.

Our pragmatism and critical thinking will help solve any investigation problems your business may face, and we do so in a legally robust way.

Compliance & discretion

Conducting digital investigations in accordance with a number of internationally recognised standards and UK and International rules of evidence, we execute clearly defined investigation plans that withstand legal scrutiny.

Working discreetly with your business to mitigate as much as possible against the business disruption and potential brand damage that a complex data investigation may present.

We support you fully throughout any investigation.

Digital investigation standards

We conduct DF investigations in accordance with several internationally recognised standards including:

  • NIST Computer Forensic Tool Testing Program
  • UK Forensic Science Regulator Codes of Practice and Conduct for forensic science providers and practitioners in the Criminal Justice System, Issue 3 (2016)
  • IEC17025:2005
  • CREST Cyber Security Incident Response Guide Version 1
  • SANS Institute FOR508 Advanced Digital Forensics, Incident Response, and Threat Hunting Methodologies

The principles of digital evidence

Principle 1
No action taken by law enforcement agencies, persons employed within those agencies or their agents should change data which may subsequently be relied upon in court.

Principle 2
In circumstances where a person finds it necessary to access original data, that person must be competent to do so and be able to give evidence explaining the relevance and the implications of their actions.

Principle 3
An audit trail or other record of all processes applied to digital evidence should be created and preserved. An independent third party should be able to examine those processes and achieve the same result.

Principle 4
The person in charge of the investigation has overall responsibility for ensuring that the law and these principles are adhered to.

PTP Security Consultancy Services