Search for Malware on Webservers with Blazescan
Blazescan is a Linux webserver malware scanning and incident response tool, with built in support for cPanel servers, but wi…
RDP Cache Forensics
As a continuation of the “Introduction to Windows Forensics” series, this video introduces Remote Desktop Protoc…
Learning Malware Analysis
Packt Publishing has announced “Learning Malware Analysis“ by Monappa K A. The book is expected to be published …
Chasing Adversaries with Autoruns – Evading Techniques and Countermeasures
Sysinternals Autoruns is a great utility for defenders to discover and disable malware and adversaries’ pers…
Survey on the Usage of Machine Learning Techniques for Malware Analysis
Coping with malware is getting more and more challenging, given their relentless growth in complexity and volume. One of the…
Open Sourcing JA3: SSL/TLS Client Fingerprinting for Malware Detection
A JA3 hash represents the fingerprint of an SSL/TLS client application as detected via a network sensor or device, such as B…
Finding and Decoding Malicious PowerShell Scripts
Mari DeGrazia has published a very useful post, which will help you to learn how to find and decode malicious PowerShell scr…
Memory Forensics in Clouds and Containers
Alex Maestretti has published an interesting post about userland memory acquisition and targeted analysis of memory at …
AUMFOR – Automatic Memory Forensics
AUMFOR is a GUI based tool which can help a digital forensic investigator by performing all complex and tedious work automat…
Introduction to Redline
As a continuation of the “Introduction to Memory Forensics” series, Richard Davis taking a look at Redline – a free analysis…
