volatility-wnf: Browse and dump Windows Notification Facilities
This Volatility plugin is based on work of Alex Ionescu and Gabrielle Viala. https://blog.quarkslab.com/playing-with-the-win…
-
Dissecting Cozy Bear’s malicious LNK file
Weaponized LNK files are not very popular way of distributing malware, but, of course, som…
-
The Most Essential Image Data Retrieval for Digital Forensic Experts
This article is a general explanation why and how forensic experts and first responders co…
-
Cloud Forensics: Google Drive
We decided to continue our cloud forensics series, but focus on more popular desktop appli…
Cyber Forensics Blog
Learning Android Forensics, 2nd Edition has been released
The 2nd edition of Learning Android Forensics by Oleg Skulkin, Donnie Tindal and Rohit Tamma has been released. Here is the …
yara_tools: Create YARA Rules In Python
Michael Matonis has written a library that helps security researchers create simple or complex YARA rules in Python. It̵…
Digital Forensics Tutorials by AccessData
AccessData has published a bunch of videos on its YouTube channel. You’ll learn about detecting and attacking TrueCtyp…
Show More News
