Investigating the Cyber Breach has been released
“Investigating the Cyber Breach: The Digital Forensics Guide for the Network Engineer” by Joseph Muniz and Aami…
Incident Response Reminders from a Mouse
Here is an amazing post by Mike Sheward – he has made our Friday! If you want to understand the incident response cycl…
Consolation – a log browser for macOS Sierra and High Sierra
Consolation provides an accessible but powerful way to browse, search, and analyse entries in the new log system which have …
Transit: a MacOS IR toolkit
Transit is a MacOS IR toolkit written by Joey Pistone while on the train. It can pull the following inforamtion from the sys…
IT Security Incident Response: Current State, Emerging Problems, and New Approaches
The field Incident Response within the IT Security is the overall process of handling an incident which occurs within a comp…
APT Simulator
Florian Roth has presented APT Simulator – a Windows Batch script that uses a set of tools and output files to make a …
Another EVTX parser has arrived!
Sergey Golovanov from Kaspersky Lab has announced a new EVTX parser. One of its great features is different operating system…
Incident Response Tools
In this post Harlan Carvey has presented his views on incident response tools. In the post you’ll find both “cla…
CyDefe Labs DFIR Challenges
If you don’t know what to do on a Sunday evening, there is a bunch of nice digital forensics and incident response cha…
Simplifying Bro IDS Log Parsing with ParseBroLogs
A few days ago Dan Gunter has published a post about his tool capable of parsing logs from the Bro Intrusion Detection Syste…
