Week 27 – 2019

Last chance to enter your votes for the 2019 Forensic 4Cast Awards, held at the SANS DFIR Summit in Austin, Texas.

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections.

As always, Thanks to those who give a little back for their support!





  • On this week’s Digital Forensic Survival Podcast, Michael talks about IR in container deployments
    DFSP # 176 – Cloud Incident Response

  • Matt Green shared his presentation on endpoint hunting, titled “Endpoint Hunting in an AntiEDR World”
    Endpoint Hunting in an AntiEDR World

  • Richard Davis at 13Cubed shows the new Windows Terminal available in the Windows App Store. Richard shows that there’s a new Console host process that manages the terminal however there’s no Volatility profile available to examine a memory dump. It would be interesting to dump the process specifically and run strings over it to see what’s stored.
    First Look at Windows Terminal

  • I recorded my ‘This Month In 4n6’ podcast for the month of June
    This Month In 4n6 – June – 2019




And that’s all for the week! If you think I’ve missed something, or want me to cover something specifically hit me up through the contact page or on the social pipes!

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s