When I decided to create a blog last year to document my journey as a DFIR newbie and share resources, I made a Twitter account to go along with it. I didn’t know about “Infosec Twitter” or how many DFIR people were on there, but I found out rather quickly. It was like a whole new world had opened up! A few months later, in April of 2020, I was scrolling through my Twitter feed and saw something about a Trace Labs OSINT CTF. I had no idea what Trace Labs was, and really didn’t know much about OSINT but...
Did you miss @dfirjos's excellent blog piece on practical examples of using Velociraptor to monitor adversaries during an incident response? Catch it here:
Building your own lab is an excellent way to gain hands-on experience and grow your knowledge. It can be done for free and it's easy to construct labs to emulate and analyze various attacks.
Check out our free tutorials here: https://lnkd.in/djce4_qX
The first new publicly released episode of 2023 is now available. Check out this important video covering a new evidence of execution artifact introduced in Windows 11 22H2. https://www.youtube.com/watch?v=rV8aErDj06A #DFIR #forensics
Recent Comments