Windows Store & Apps Analysis
Here are research, tools and scripts presented at Magnet User Summit 2019 by Yogesh Khatri and Jack Farley. …
Digital Forensics and Incident Response in G Suite
This talk uses a real-life case scenario to prepare attendees for responding to security incidents affecting G Suite users. …
Deleting Any Message from Both Ends in Telegram: How Will It Impact Mobile Forensics?
On Marth 24th Telegram released a new version of their messenger, and introduced a new feature – ability “to delete an…
Detection of Algorithmically Generated Malicious Domain
In recent years, many malware writers have relied on Dynamic Domain Name Services (DDNS) to maintain their Command and Contr…
Incident Forensics Lifecycle
Recently I’m becoming more and more interested in cyber threat intelligence. I even started preparing for GCTI certifi…
Shining a light on Spotlight: Leveraging Apple’s desktop search utility to recover deleted file metadata on macOS
Spotlight is a proprietary desktop search technology released by Apple in 2004 for its Macintosh operating system Mac OS X 1…
AutoMacTC: Automated Mac Forensic Triage Collector
AutoMacTC is a modular forensic triage collection framework designed to access various forensic artifacts on macOS, parse th…
The Five Most Dangerous New Attack Techniques and How to Counter Them
Which are the most dangerous new attack techniques? How do they work? How can you stop them? What’s coming next and how can …
A Practical Model for Conducting Cyber Threat Hunting
There remains a lack of definition and a formal model from which to base threat hunting operations and quantifying the succe…
Lean Hunting
(Threat) Hunting has been around long enough that most agree it should be part of any comprehensive information security pro…
