Volatility: Proxies and Network Traffic
Marcus Bakker from MB Secure has published a tutorial on how to catch malware beaconing from an infrastructure where a non-t…
-
Finding Metasploit’s Meterpreter Traces with Memory Forensics
Metasploit Framework is very popular not only among pentesters, but also quite often used …
-
Forensic Analysis of Damaged SQLite Databases
SQLite databases are very common sources of forensic artifacts nowadays. A lot of mobile a…
-
Detection of Backdating the System Clock in macOS
Recently we have received a good question from one of our DFIR mates: “How can one d…
Cyber Forensics Blog
Forensic Review with Notepad++
In this post Hoyt Harness writes about how to add Plugin Manager to Notepad++ and make it very extensible and useful for dig…
Make Your Debian a Forensic Workstation
If you are looking for a SIFT replacement and already have a Debian workstation, this package is for you. Forensics-full pac…
Autopsy 4.6.0 Linux Beta 1
The first beta Linux version of your favourite open source DFIR tool Autopsy. You can download it here. Now the tool has the…
Show More News
Random Post
RawCopy is a console application that copy files off NTFS volumes by using low …
