April 20, 2021

Cyber Forensicator

  • Articles
  • Books
  • Contact
  • How To
  • News
  • Presentations
  • Science
  • Software
  • Tips & Tricks
  • Videos
  • Webinars
  • White Papers
Home Tag Archives: DFIR (page 2)

Tag Archives: DFIR

Presentations

Launching APOLLO: Creating a Simple Tool for Advanced Forensic Analysis

Last week Sarah Edwards attended MacDevOpsYVR in Vancouver, Canada, and had a talk about her simple tool for advanced forens…

Software

Automated Hunting of Memory Resident Malware at Scale

Memhunter is an endpoint sensor tool that is specialized in detecing resident malware, improving the threat hunter analysis …

Science

Detection of Malicious Activities in Internet of Things Environment Based on Binary Visualization and Machine Intelligence

Internet of Things (IoT) devices are increasingly deployed for different purposes such as data sensing, collecting and contr…

How To

Creating a File System Image of iOS12

Apple’s iOS 12 is the latest iteration in their mobile device software. With each iteration Apple creates new system p…

Articles

Using MITRE ATT&CK for Forensics: BITS Jobs (T1197)

If you are doing incident response, you must know what MITRE ATT&CK is. As it’s a great guide to threat actors tac…

How To

Parsing Carved EVTX Records Using EvtxECmd

Teru Yamazaki has posted about how to extract Windows Event Log files from allocated space, Volume Shadow Copies, carve them…

Books

PowerShell and Python Together: Targeting Digital Investigations

A new book by Chet Hosmer has been released. The book will teach you how to use PowerShell and Python for conducting digital…

Tips & Tricks

Finding Registry Malware Persistence with RECmd

Chad Tilbury has writen a post on how to use Eric Zimmerman’s RECmd and its batch files to uncover malware persistence…

Software

Autopsy 4.11.0 Released

The new version of Autopsy has been released. New Features: Adding Data: Hashes can optionally be entered when adding a disk…

Software

Extract Configuration Data of Known Malware with MalConfScan

JPCERT has released a Volatility plugin called MalConfScan. The plugin can be used to extract configuration data of popular …

Page 2 of 6212345 102030...Last

Follow Us

About Us

Cyber Forensicator is a web-project by Igor Mikhaylov and Oleg Skulkin aiming on collecting all most interesting and important cyber and digital forensics news, articles, presentations, and so on, in one place.

Popular Posts

Open Sourcing JA3: SSL/TLS Client Fingerprinting for Malware Detection

October 20, 2017

Cloud Forensics: Analyzing MEGASync

April 15, 2018

Windows Phone Physical Imaging Without JTAG and Chip-off

June 3, 2018

Timeline

  • March 4, 2021

    Find out what happened during a ransomware attack on computer

  • January 24, 2021

    Analyzing videos with multiple video streams in digital forensics

  • December 19, 2020

    PC3000 Portable III in Digital Forensics

  • December 18, 2020

    How to analyze different types of devices and find connections between them

  • July 5, 2020

    Threat Hunting: What it Is, and What it Is Not

CyberForensicator.com © Copyright 2016-2021, All Rights Reserved

Login

Welcome!Log into your account