DFIR 15

• Speaking at NCCC 2024 Apr 17, 2024
• C5W Certified Malware Analyst (Friday Giveway) #1 Apr 5, 2024
• Malware Tools, Tips and Tricks Apr 5, 2024
• Windows Sandbox Scripts Apr 5, 2024
• Memory Forensics – RansomCare Investigation Case 1 May 22, 2023
• Challenge #9 – Encrypt Them All Case Mar 27, 2023
• Challenge #8 – NTFS File System Case Mar 27, 2023
• Challenge #7 – SysInternals Case Mar 27, 2023
• Investigating USB Drives using Mount Points Not Drive Letters Apr 4, 2020
• No Drive Letter, No USB Evidence? Think Again! Apr 3, 2020
• Howto Setup and use the CuckooVM v2 Mar 18, 2020
• Acquiring Linux Memory using AVML and Using it with Volatility Jun 20, 2019
• Forensic Acquisitions over Netcat Jun 4, 2019
• Anti-Forensics: Leveraging OS and File System Artifacts Dec 10, 2016
• Disable Automount for SIFT Feb 22, 2013