Jason Hale has published a post about the impact of VBS on memory acqusition. With Windows 10 and Server 2016, Microsoft added the option to enable various forms of virtualization-based security (VBS), such as Credential Guard, Device Guard, Application Guard, and more. In the post you will learn which tools to use to overcome these new features.
-
PhishPhinder: Locate and Purge Messages in O365
PhishPhinder is a tool for locating and purging messages in O365. You can learn more about… -
Defcon DFIR CTF 2018 Open to the Public
David Cowen has posted Defcon DFIR CTF 2018 images and questions at his blog. It’s t… -
IoT 4n6: The Growing Impact of the Internet of Things on Digital Forensics
Gartner predicts that by 2020 there will be more than 20 billion connected “things,&…
Load More Related Articles
-
How to Disassemble a Word Document with Embedded Macros
Here is a post by Paul Cimino, in which he goes through the steps to create a macro-embedd… -
Linux Binary Poisoning Detection
In this post guys from Sandfly Security describe the process of detection poisoned Linux b… -
Malicious PowerShell in the Registry: Persistence
Mari DeGrazia continues her series of blogs about detecting and analysis of malicious Powe…
Load More In How To
