April 20, 2021

Cyber Forensicator

  • Articles
  • Books
  • Contact
  • How To
  • News
  • Presentations
  • Science
  • Software
  • Tips & Tricks
  • Videos
  • Webinars
  • White Papers
Home Tag Archives: incident response (page 4)

Tag Archives: incident response

Tips & Tricks

The Newest Version of SANS Windows Forensic Analysis Poster is Online

SANS DFIR posted the newest version of Windows Forensic Analysis poster. Updated Windows Time Rules table, lots of arti…

Presentations

Dear Blue Team: Forensic Advice to Non-Forensic Professionals to Supercharge Organization DFIR

In an age where data breaches and malware infections are quickly becoming the norm, we must prepare for Digital Forensics an…

Software

Search for Malware on Webservers with Blazescan

Blazescan is a Linux webserver malware scanning and incident response tool, with built in support for cPanel servers, but wi…

Software

Deobfuscate malicious VBA Macros with ViperMonkey

ViperMonkey is a VBA Emulation engine written in Python, designed to analyze and deobfuscate malicious VBA Macros contained …

Videos

Persistence Mechanisms

As a continuation of the “Introduction to Windows Forensics” series by Richard Davis, this episode looks at pers…

Software

PhishPhinder: Locate and Purge Messages in O365

PhishPhinder is a tool for locating and purging messages in O365. You can learn more about how to use this PowerShell s…

Uncategorized

Defcon DFIR CTF 2018 Open to the Public

David Cowen has posted Defcon DFIR CTF 2018 images and questions at his blog. It’s time to download them and have…

Tips & Tricks

Knowledge is Power! Using the macOS/iOS knowledgeC.db Database to Determine Precise User and Application Usage

Sarah Edwards has posted her research of knowledgeC.db database. This database can be found on macOS and iOS devices. O…

Videos

Business Email Compromise; Office 365 Making Sense of All the Noise

Office 365, or O365, has made online applications easier for businesses of all sizes. Its also created a significant attack …

Software

Deobfuscating Emotet’s PowerShell Payload

Lasq has posted a step-by-step guide on how to deobfuscate Emotet’s PowerShell payload. Also he shared a Python script…

Page 4 of 11First...23456 10...Last

Follow Us

About Us

Cyber Forensicator is a web-project by Igor Mikhaylov and Oleg Skulkin aiming on collecting all most interesting and important cyber and digital forensics news, articles, presentations, and so on, in one place.

Popular Posts

Open Sourcing JA3: SSL/TLS Client Fingerprinting for Malware Detection

October 20, 2017

Cloud Forensics: Analyzing MEGASync

April 15, 2018

Windows Phone Physical Imaging Without JTAG and Chip-off

June 3, 2018

Timeline

  • March 4, 2021

    Find out what happened during a ransomware attack on computer

  • January 24, 2021

    Analyzing videos with multiple video streams in digital forensics

  • December 19, 2020

    PC3000 Portable III in Digital Forensics

  • December 18, 2020

    How to analyze different types of devices and find connections between them

  • July 5, 2020

    Threat Hunting: What it Is, and What it Is Not

CyberForensicator.com © Copyright 2016-2021, All Rights Reserved

Login

Welcome!Log into your account