As always, Thanks to those who give a little back for their support! Links only for the Malware and Threat Hunting sections this week FORENSIC ANALYSIS DFIR Investigator of the Year candidate, Alexis Brignoni at ‘Initialization Vectors’ posted a couple of times this week He looks at the data stored by Samsung’s predictive text surrounding […]

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS Alexis Brignoni at ‘Initialization Vectors’ examines chats from the Badoo Android app after identifying them with Magnet’s App Simulator Finding Badoo chats in Android using SQL […]

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS Alexis Brignoni at ‘Initialization Vectors’ examines the SystemPanel2 Android app which “keeps timestamped system wide app usage statistics” Android SystemPanel2 – App usage tracking Dark Defender […]

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS On 4n6files the author documents the process of obtaining a full file system image from an iOS 12 device. Previous posts on iOS file system have […]

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, Thanks to those who give a little back for their support! Lee Whitifeld has opened the voting for the Forensic 4Cast Awards, and I very much appreciate being nominated for DFIR Resource, Show, and Social Media person of the […]

Last chance to throw in your nomination for the 2019 Forensic 4Cast Awards. You can place your nominations, including for this site, here. The awards will be taking place at the annual SANS DFIR Summit in Austin, Texas, July 25-26 and the agenda has just been released. Lots of great talks at the DFIR Summit […]

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS Marco Fontani at Amped demonstrate examining pictures using Authenticate’s hex viewer Even the (Byte)Streams Can Tell More Than It Seems: Learn How to Spot Hidden Data […]