Eric Zimmerman has released a new tool. This time it’s Recycle Bin artifact parser called RBCmd. It supports both INFO2 and $I formats. You can download the tool here.
-
2019 Forensic 4cast Awards: Cyber Forensicator’s Nominations
2019 Forensic 4cast Awards nominees will be presented quite soon, and we decided to presen… -
A Brief History of Attribution Mistakes
This presentation will examine the analytic mistakes the infosec community has made over t… -
Windows Store & Apps Analysis
Here are research, tools and scripts presented at Magnet User Summit 2019 by Yogesh Khatri…
Load More Related Articles
-
AutoMacTC: Automated Mac Forensic Triage Collector
AutoMacTC is a modular forensic triage collection framework designed to access various for… -
Sysmon-Modular: A Sysmon Configuration Repository for Everybody to Customise
This is a Microsoft Sysinternals Sysmon configuration repository by Olaf Hartong, set up m… -
Recover Deleted Records in Windows.edb with WinSearchDBAnalyzer
WinSearchDBAnalyzer by Jeonghyeon Kim can parse normal records and recover deleted records…
Load More In Software
