Forensics EPAS: Designed for law enforcement use, aimed at recovering encrypted data and system access

This project investigates how the integration of password recovery and forensic analysis techniques can enhance proactive defence strategies in modern cybersecurity operations. Building upon methodologies from both red team and blue team perspectives, the research explores how password recovery/cracking tools—traditionally used in penetration testing—can be combined with digital forensic analysis to uncover, exploit, and ultimately strengthen organisational password-based authentication systems.

Through simulated cyberattack scenarios within controlled environments, such as phishing and credential stuffing exercises, the study examines adversarial tactics, techniques, and procedures (TTPs) to assess vulnerabilities in enterprise password security. Post-simulation forensic analysis is then applied to trace attack vectors, identify weak authentication practices, and derive actionable insights for defensive strategy refinement.

The research aims to develop a dynamic and adaptive defence framework that integrates findings from password analytics and forensic investigations in real-time, enabling organisations to evolve their cyber resilience against advanced persistent threats (APTs). By showcasing the importance of regular auditing, password assessment, and forensic-driven feedback loops, this project contributes to building a proactive cybersecurity posture that bridges the gap between offensive testing and defensive strategy development.