Now displaying: February, 2017
Feb 28, 2017
This week I share some thoughts on how to approach DFIR conferences to maximize the experience. There are many to choose from and having an analytical approach may get you exactly what you want for your time and money.
Feb 21, 2017
This week I talk about my favorite Volatility plugins for File Use & Knowledge investigations to get at the volatile evidence most often targeted during a dead box exam.
Feb 14, 2017
This week I talk about FreeMind, a freely available visualization tool that can be used to enhance the computer forensic investigation process.
Feb 7, 2017
This week I talk about an openly available library and tool repository all examiners should be aware of as well as a tool by Didier Stevens called "AnalyzePESig" which is perfect for bulk analysis of executables on Windows systems.