ThinkDFIRMetaspike CTF – Week 6 – “HODL onto your timestamps” AbdulRhman Alfaifi at U0041Exploring Windows Artifacts : LNK Files Anatoly Tykushin at Group IBThe source of everything: forensic examination of incidents involving source code leaks Brian MaloneyYour AV is Trying to Tell You Something: AVMan.log/Daily AV Log Cellebrite Overview of Parsed Data in Cellebrite Physical […]

Also I’ll be delivering a SANS @Mic talk this Wednesday, 17 February at 1PM AEDT (2AM UTC, sorry!). The talk is aimed at people new to the field, talking about how to get started learning about digital forensics by testing and experimenting. You can register here Andrea Fortuna at ‘So Long, and Thanks for All […]

ThinkDFIRMetaspike CTF – Week 5 – “Spot the DFIRence” Abhiram’s Blog Mr EvilPepo [series] – TrollCAT CTF 2021 S3cr3t – TrollCAT CTF 2021 Andrea Fortuna at ‘So Long, and Thanks for All the Fish’Windows registry Transaction Logs in forensic analysis Brian MaloneyYour AV is Trying to Tell You Something: rawlog.log DFIR Review Extracting and Decrypting […]

Jessica Hyde at Magnet ForensicsAndroid Motion Photos in Magnet AXIOM Doug Metz at Baker Street ForensicsForensic Imaging a Microsoft Surface Pro Brian MaloneyYour AV is Trying to Tell You Something: tralog.log Matt Goeckel at CellebriteHow to Use The Project Tree and Analyzed Data in Cellebrite Physical Analyzer to Find Data Fast Chris Vance at ‘D20 […]

Just a reminder that DFRWS APAC 2021 is happening this week! Because it’s virtual it’s also quite affordable and you can find more details here Mark Spencer at Arsenal ReconBitLocker for DFIR – Part III BelkasoftAnalyzing videos with multiple video streams in digital forensics Brian MaloneyYour AV is Trying to Tell You Something: seclog.log Kevin […]

DFRWS APAC 2021 is almost here! Only a week and a half to go. The program has been released, and because it’s virtual, anyone can join easily through the magic of the Internets.DFRWS APAC 2021 Brian MaloneyYour AV is Trying to Tell You Something: syslog.log Christiaan BeekVHD Forensics — the sequel Craig Ball at ‘Ball in your […]

Jordan Drysdale at Black Hills Information SecurityA Sysmon Event ID Breakdown Brian MaloneyYour AV is Trying to Tell You Something: Log Lines Deagler’s 4n6 BlogAn Android Casting (Device) Story: “cast.db” Kovar & Associates UAV THREATS TO THE OIL AND GAS INDUSTRY PART 1: THE THREAT IS REAL UAV THREATS TO THE OIL AND GAS INDUSTRY […]

Kevin Pagano at Stark 4N6Charging Battery with Turbo DB Magnet Forensics Weekly CTF Magnet Weekly CTF, Week 12 [Final] Solution Walk Through Magnet Weekly CTF Challenge Week 12 Writeup – Last But Not Least Magnet CTF Week 11 – DNS Cache Analysis… sort of Magnet CTF Week 12: Merry Hacksmas Magnet Weekly CTF (Week 12) […]

2020 is finally over! How lucky we are to see the day (no seriously, really grateful, could have been a lot worse). Not that we’re out of the woods yet, but hopefully 2021 is a lot brighter for a lot of people. The year didn’t start off easy in Australia with the fires that caused […]

Last weekly post of the year! I’m still planning an end of year wrap up post, and the podcast though so still a bit more work to do 🙂 Marco Fontani at AmpedHow to Use Amped Authenticate Video PRNU to Check Whether a Video and Some Images Are From the Same Camera Andrea Fortuna at […]