Forensics and Security Research Group

Academic cybersecurity and digital forensics research group spanning University College Dublin and South East Technological University.

View Publications Meet the Group

Research Focus

The Forensics and Security Research Group conducts research in digital forensics, cybersecurity, network investigation, artificial intelligence for forensic workflows, cloud and IoT forensics, and digital forensic education.

Founded in University College Dublin and now expanded through collaboration with South East Technological University, the group works with academic, law-enforcement, and industry partners on research that improves the reliability, scalability, and practical impact of digital investigations.

Digital Forensics Network Investigation AI for Forensics Cloud and IoT Evidence Forensic Readiness Education and Training

Latest

News

All News

Mar 2026

VAAS: Vision-Attention Anomaly Scoring for Image Manipulation Detection in Digital Forensics

VAAS: A novel dual-module framework for image manipulation detection in digital forensics, combining global attention-based anomaly estimation with patch-level self-consistency scoring for interpretable anomaly detection and tamper localization.

Mar 2026

Plug to Place: Indoor Multimedia Geolocation from Electrical Sockets for Digital Investigation

This paper presents a novel approach to indoor multimedia geolocation using electrical sockets as consistent indoor markers for geolocation. A three-stage deep learning pipeline detects plug sockets, classifies them into standardized types, and maps them to countries. The approach is evaluated on the Hotels-50K dataset and demonstrates its practical utility for law enforcement in human trafficking investigations.

Mar 2026

Objects as Universal Geolocation Cues: A Computer Vision Approach

This paper proposes a computer vision approach to geolocation using universal visual cues, specifically electrical plug sockets, to narrow down the search space for law enforcement in combating crimes such as human trafficking and child exploitation.

Mar 2026

New DFRWS EU 2026 Publications

The group has new work appearing at DFRWS EU 2026 and in Forensic Science International: Digital Investigation.

Recent Output

Selected Publications

Full Publications List

2026

AutoDFBench 1.0: A benchmarking framework for digital forensic tool testing and generated code evaluation

Akila Wickramasekara; Tharusha Mihiranga; Aruna Withanage; Buddhima Weerasinghe; Frank Breitinger; John Sheppard; Mark Scanlon

Forensic Science International: Digital Investigation Vol. 56 pp. 302055

AutoDFBench 1.0 is a benchmarking framework for digital forensic tool testing, evaluating conventional and AI-generated tools across five areas: string search, deleted file recovery, file carving, Windows registry recovery, and SQLite data recovery.

PDF BibTeX DOI Open Access

2025

Fine-Tuning Large Language Models for Digital Forensics: Case Study and General Recommendations

Gaëtan Michelet; Hans Henseler; Harm van Beek; Mark Scanlon; Frank Breitinger

ACM Digital Threats: Research and Practice pp. 3748264

This paper proposes recommendations for fine-tuning large language models (LLMs) for digital forensics tasks, addressing the gap in existing research. A case study on chat summarization showcases the applicability of the recommendations, evaluating multiple fine-tuned models to assess their performance. The study shares lessons learned from the case study, providing insights into the fine-tuning process, computational power issues, data challenges, and evaluation methods.

PDF BibTeX DOI Open Access

2024

Context Based Password Cracking Dictionary Expansion Using Generative Pre-trained Transformers

Greta Imhof; Aikaterini Kanta; Mark Scanlon

2024 Cyber Research Conference - Ireland (Cyber-RCI)

This paper explores the effectiveness of combining a strategic contextual approach with large language models in password cracking. The authors create context-based password dictionaries through training PassGPT models with contextual information, demonstrating improved password cracking efficiency and accuracy.

PDF BibTeX DOI