Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS On 4n6files the author documents the process of obtaining a full file system image from an iOS 12 device. Previous posts on iOS file system have […]

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, Thanks to those who give a little back for their support! Lee Whitifeld has opened the voting for the Forensic 4Cast Awards, and I very much appreciate being nominated for DFIR Resource, Show, and Social Media person of the […]

Last chance to throw in your nomination for the 2019 Forensic 4Cast Awards. You can place your nominations, including for this site, here. The awards will be taking place at the annual SANS DFIR Summit in Austin, Texas, July 25-26 and the agenda has just been released. Lots of great talks at the DFIR Summit […]

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS Marco Fontani at Amped demonstrate examining pictures using Authenticate’s hex viewer Even the (Byte)Streams Can Tell More Than It Seems: Learn How to Spot Hidden Data […]

Thanks to Lodrina for her work on the Threat Hunting and Malware Analysis sections. As always, Thanks to those who give a little back for their support! FORENSIC ANALYSIS Eric Zimmerman has released an Event Log parsing utility, EvtxECmd Introducing EvtxECmd!!  Damian Pfammatter at Compass Security explains the various event log entries that are useful […]