Carving EVTX
Quentin Jerome from RawSec shared an article on carving Windows Event Logs in EVTX format. He gives a short overview of the …
Hunting Fileless Malware with LOG-MD Free Edition
In this video you will learn how to hunt so called “Fileless malware” or “Non-Malware malware” using…
Bitscout: Remote Forensics Meta Tool
Bitscout allows anyone who is running Ubuntu OS to build own LiveCD/LiveUSB image to be used for remote digital forensics (o…
Windows Forensics Cookbook
Packt Publishing has announced a book by Oleg Skulkin (Cyber Forensicator) and Scar de Courcier (Forensic Focus). “Win…
Malware Persistence Techniques
Andrea Fortuna has posted a very useful article about the most common malware persistence techniques. You will learn about t…
Forensic Analysis of Epic Privacy Browser on Windows Operating Systems
Internet security can be compromised not only through the threat of Malware, fraud, system intrusion or damage, but also via…
Windows Application Compatibility Forensics
Richard Davis has posted another video as a part of his “Introduction to Windows Forensics”, which shows three a…
Detecting Lateral Movement through Tracking Event Logs
Japan Computer Emergency Response Team Coordination Center (JPCERT/CC) presented an 80-page guide on how to detect lateral m…
Introduction to Windows Forensics
Richard Davis has published another interesting video – an introduction to basic Windows forensics. He covers such top…
Introduction to Memory Forensics
Richard Davis has posted a video introduction to memory forensics, which includes a sample exercise using Volatility 2.6 to …
