Introduction
Forensic file handling vs. protecting privacy
Tools
Autopsy
Python
Python libraries
Adobe Photoshop
Adobe Acrobat
HxD or other hex editor
Identify PII with Autopsy
...
Distinguishing between false positives and actual PII
Extract files from disk image
Redact PII with Python
Use regex to find
Output files with "_redacted" suffix
Add original file extension to any converted formats (e.g. file_doc.docx)
Redacting .msg files
Redacting .txt files
...
Convert to .docx using Visual Basic
Redact .docx files
Redacting .xls and .xlsx files
Redacting .html files
Manual redaction
Redacting .tif and other image files
...