Using MITRE ATT&CK for Forensics: WMI Event Subscription (T1084)
First of all, I would like to thank all of those who liked and retweeted the previous article from this series, BITS Jobs (T…
-
Tools up: the best software and hardware tools for computer forensics
Igor Mikhailov is a digital forensic analyst of the digital forensic laboratory at Group-I…
-
Following the RTM
Researchers became aware of the activities of the RTM group in December 2015. Since then, …
-
Using MITRE ATT&CK for Forensics: Image File Execution Options Injection (T1183)
As was promised, we continue our Using MITRE ATT&CK for Forensics series. This time we…
Cyber Forensics Blog
The PoSh Hunter CTF
If you want to test your PowerShell skills and interested in threat hunting – the PoSh Hunter CTF is for you. …
Launching APOLLO: Creating a Simple Tool for Advanced Forensic Analysis
Last week Sarah Edwards attended MacDevOpsYVR in Vancouver, Canada, and had a talk about her simple tool for advanced forens…
Automated Hunting of Memory Resident Malware at Scale
Memhunter is an endpoint sensor tool that is specialized in detecing resident malware, improving the threat hunter analysis …
Show More News
