Week 31 – 2020

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, thanks to those who give a little back for their support! FORENSIC ANALYSIS Belkasoft Whitepaper: Using Belkasoft Evidence Center to Uncover Cyber Threat Actors’ Persistence Mechanisms Roey Arato at Cellebrite How to Extract Evidence From Samsung Devices Using Cellebrite UFED […]

Week 30 – 2020

Last week, the Forensic 4Cast awards were held at the end of the virtual DFIR Summit. Congratulations to all the winners, as well as everyone nominated. Everyone nominated should really pat themselves on the back for a job well done, it’s quite an achievement! Thanks to the DFIR Community, Cellebrite Wins Multiple Times at Forensics […]

Week 29 – 2020

No Lodrina this week, taking a well deserved break after the recent SANS DFIR Summit, and her keynote. As always, thanks to those who give a little back for their support! FORENSIC ANALYSIS Andrew Rathbun at AboutDFIR Introducing AboutDFIR’s KAPE Guide Abhiram Kumar Writing a simple Volatility plugin Andrew Malec Investigating web shells Defcon 2019 memory […]

Week 28 – 2020

Less than a week to go until the (Virtual) DFIR Summit! Our very own Lodrina is even keynoting on day 2! Also not long till the Forensic 4Cast awards so get your votes in quick! As always, thanks to those who give a little back for their support! FORENSIC ANALYSIS Arman Gungor at Metaspike Gmail […]

Week 27 – 2020

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, thanks to those who give a little back for their support! FORENSIC ANALYSIS Belkasoft Whitepaper: Tracking Potentially Malicious Files with Evidence of Execution Esing Belkasoft Evidence Center Elcomsoft Unlocking BitLocker Volumes by Booting from a USB Drive Forensic8or MemLabs: […]

This Month In 4n6 – June – 2020

A monthly wrap-up of the DFIR news for June 2020. Thank you to those Patreon donors for the last month. I decided to go with the value-for-value model rather than advertising. Alternatively, it would be great if you could leave an iTunes review. If you are a Patreon donor the show notes can be found here. Special thanks to […]

Week 26 – 2020

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, thanks to those who give a little back for their support! Did you miss #ShareTheMicInCyber Friday the 26th on Twitter and LinkedIn? In the DFIR community be sure to check out: O’Shea Bowens elevated by Phil Hagen; Tyrone E. […]

Week 25 – 2020

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, thanks to those who give a little back for their support! FORENSIC ANALYSIS Cellebrite If I Could Turn Back Time—A Closer Look at iOS Time Modifications How to Conduct Keyword Searches With Cellebrite Physical Analyzer How Turn-By-Turn Driving Directions […]

Week 24 – 2020

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, thanks to those who give a little back for their support! FORENSIC ANALYSIS Andrew Skatoff at ‘DFIR TNT’ Find Evil in 5 Easy Steps – Part2 stuxn3t at bi0s USB 2 – 2020 Defenit CTF Heather Mahalik at Cellebrite […]

Week 23 – 2020

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, thanks to those who give a little back for their support! FORENSIC ANALYSIS Andrea Fortuna at ‘So Long, and Thanks for All the Fish’ Windows Forensic Analysis: some thoughts on RDP related Event IDs Heather Mahalik at Cellebrite How to […]