OSINT

I Participated in a Trace Labs CTF – Now I’m Hooked on OSINT

Posted on June 18, 2021 by OSINT 1

When I decided to create a blog last year to document my journey as a DFIR newbie and share resources, I made a Twitter account to go along with it. I didn’t know about “Infosec Twitter” or how many DFIR people were on there, but I found out rather quickly. It was like a whole new world had opened up! A few months later, in April of 2020, I was scrolling through my Twitter feed and saw something about a Trace Labs OSINT CTF. I had no idea what Trace Labs was, and really didn’t know much about OSINT but...

Continue reading...
Support This Site

dfirdiva Follow

Retweet on Twitter DFIR Diva Retweeted
velocidex Velociraptor @velocidex ·
19 Jan

Did you miss @dfirjos's excellent blog piece on practical examples of using Velociraptor to monitor adversaries during an incident response? Catch it here:

https://docs.velociraptor.app/blog/2023/2023-01-13-tracking-an-adversary-in-realtime/

Reply on Twitter 1616160036366991366 Retweet on Twitter 1616160036366991366 10 Like on Twitter 1616160036366991366 29 Twitter 1616160036366991366
Retweet on Twitter DFIR Diva Retweeted
bluecapesec bluecapesec @bluecapesec ·
18 Jan

How to upskill?

Building your own lab is an excellent way to gain hands-on experience and grow your knowledge. It can be done for free and it's easy to construct labs to emulate and analyze various attacks.

Check out our free tutorials here: https://lnkd.in/djce4_qX

#dfir

Reply on Twitter 1615771604834828289 Retweet on Twitter 1615771604834828289 7 Like on Twitter 1615771604834828289 15 Twitter 1615771604834828289
Retweet on Twitter DFIR Diva Retweeted
13cubeddfir 13Cubed @13cubeddfir ·
17 Jan

The first new publicly released episode of 2023 is now available. Check out this important video covering a new evidence of execution artifact introduced in Windows 11 22H2. https://www.youtube.com/watch?v=rV8aErDj06A #DFIR #forensics

Reply on Twitter 1615330086580027392 Retweet on Twitter 1615330086580027392 23 Like on Twitter 1615330086580027392 55 Twitter 1615330086580027392
Retweet on Twitter DFIR Diva Retweeted
_abhiramkumar Abhiram Kumar @_abhiramkumar ·
19 Jan

New blog on @aboutdfir by Fabian Mendoza on identifying the source system of PsExec using USN Journal.

This is truly cool and extremely helpful! Can't wait for more such research.

#DFIR

https://aboutdfir.com/the-key-to-identify-psexec/

Reply on Twitter 1616090146985889795 Retweet on Twitter 1616090146985889795 14 Like on Twitter 1616090146985889795 37 Twitter 1616090146985889795
Load More

RSS Latest DFIR Jobs

  • An error has occurred, which probably means the feed is down. Try again later.