Week 3 – 2021

DFRWS APAC 2021 is almost here! Only a week and a half to go. The program has been released, and because it’s virtual, anyone can join easily through the magic of the Internets.DFRWS APAC 2021 Brian MaloneyYour AV is Trying to Tell You Something: syslog.log Christiaan BeekVHD Forensics — the sequel Craig Ball at ‘Ball in your […]

Week 2 – 2021

Jordan Drysdale at Black Hills Information SecurityA Sysmon Event ID Breakdown Brian MaloneyYour AV is Trying to Tell You Something: Log Lines Deagler’s 4n6 BlogAn Android Casting (Device) Story: “cast.db” Kovar & Associates UAV THREATS TO THE OIL AND GAS INDUSTRY PART 1: THE THREAT IS REAL UAV THREATS TO THE OIL AND GAS INDUSTRY […]

Week 1 – 2021

Kevin Pagano at Stark 4N6Charging Battery with Turbo DB Magnet Forensics Weekly CTF Magnet Weekly CTF, Week 12 [Final] Solution Walk Through Magnet Weekly CTF Challenge Week 12 Writeup – Last But Not Least Magnet CTF Week 11 – DNS Cache Analysis… sort of Magnet CTF Week 12: Merry Hacksmas Magnet Weekly CTF (Week 12) […]

2020 Wrap Up

2020 is finally over! How lucky we are to see the day (no seriously, really grateful, could have been a lot worse). Not that we’re out of the woods yet, but hopefully 2021 is a lot brighter for a lot of people. The year didn’t start off easy in Australia with the fires that caused […]

Week 52 – 2020

Last weekly post of the year! I’m still planning an end of year wrap up post, and the podcast though so still a bit more work to do 🙂 Marco Fontani at AmpedHow to Use Amped Authenticate Video PRNU to Check Whether a Video and Some Images Are From the Same Camera Andrea Fortuna at […]

Week 51 – 2020

FOR308 is now available OnDemand, read more about it here! Andrea Fortuna at ‘So Long, and Thanks for All the Fish’Mobile forensics: how to identify suspect network traffic Dr. Neal Krawetz at ‘The Hacker Factor Blog’iPhone Pictures Tegan Parsons at First ResponseThe evidence shows that… Vishva Vaghela at Hacking ArticlesComprehensive Guide on Autopsy Tool (Windows) […]

Week 50 – 2020

Andrea Fortuna at ‘So Long, and Thanks for All the Fish’OSX Forensics: a brief selection of useful tools Shafik Punja guest post on Arsenal ReconArsenal Image Mounter (AIM) Walkthrough Atropos4n6How to use Partition%4DiagnosticParser Bryan Ambrose at Data DigitallyApple Pattern of Life Lazy Output’er (APOLLO) on Windows Heather Mahalik at CellebriteNavigating The Analyzed Data Modal In […]

Week 49 – 2020

Bill Stearns at Active CountermeasuresWhere Do I Put My Zeek Sensor? Andrea Fortuna at ‘So Long, and Thanks for All the Fish’How to extract forensic artifacts from Linux swap Atropos4n6Are you sure you extract all the available Volume Serial Numbers (VSNs) that reside in the Windows 10 Event Log “Microsoft-Windows-Partition%4Diagnostic.evtx”? Blue Team BlogSIEM – Use […]