Windows 10 and beyond – What is your digital forensics investigation missing?
Windows Forensic Analysis is constantly progressing. If you have been doing digital forensics for the past few years and hav…
Windows Forensic Analysis is constantly progressing. If you have been doing digital forensics for the past few years and hav…
In this post Jamie McQuaid from Magnet Forensics shows how to create Android physical images via custom recovery with A…
fuse-mft is a FUSE file system driver for MFT files. It allows an forensic examiner to mount the file system …
SANS Institute has published a whitepaper by Xiaoxi Fan titled “Detection of Backdating the System Clock in Windo…
Sarah Edwards has updated her Mac MRU Parser. Now it parses the Spotlight Shortcuts plist and also the Bookmark an…
Another interesting article has been posted by Andrea Fortuna. This time he is writing about event logs recovery f…
HFS Journal Parser finds and parses catalog file record in HFS+/HFSX .journal file. It has searching capabilities, all…
Quentin Jerome from RawSec shared an article on carving Windows Event Logs in EVTX format. He gives a short overview of the …
This demo shows the interactive investigation capabilities in Demisto using Volatility integration to analysis cridex malwar…
In this video you will learn how to hunt so called “Fileless malware” or “Non-Malware malware” …
Login