本エントリは This Week in 4n6 (FourAndSix=Forensics) で紹介された各記事の冒頭を表示し、チェックする記事をザッピングするために自動生成＆投稿したものです。 一部の記事は Google Bard を使い要約しています。4n6 は こちら からご確認いただけます。

PRESENTATIONS/PODCASTS

Black Hills Information Security

• Rogue RDP: Bring Your Own Server | Mike Felch | 1-Hour

YouTube video

• The Sysmon Update is Here | Gerard Johansen | 1-Hour

YouTube video

• Talkin’ About Infosec News – 7/21/2023

Shenetworks’ Guide to Landing Your First Tech Job Back to top Black Hills Information Security 890 Lazelle Street, Sturgis, SD 57785-1611 | 701-484-BHIS (2447) © 2008-2023 About Us | BHIS Tribe of Companies | Privacy Policy | Contact Links Search the site

Breaking Badness

• 161. The Early Bird Gets the WormGPT

Cellebrite

• The Dig For Episode 2  – Guest Ed Wagrowski

YouTube video

cloudyforensics

• EKS Forensics & Incident Response

EKS Forensics & Incident ResponseForensic Labs·Follow3 min read·5 days ago--ListenShareWe’ve continued our series on Cloud Forensics and Incident Response training with this video tutorial on AWS EKS:How do you respond to a compromised EKS Container or Node?If you’ve identified a potentially compromised container in EKS, there are two potential ways forward:If the container is running on an underlying EC2, then refer to the suggested steps above for immediate actions.If the container is running ...

Cyber Social Hub

• Things to consider when buying a new Digital Investigation Computer

YouTube video

• DFIR & Star Trek Trivia! You can win a $100 Amazon gift card from Paraben!!!! #dfir

YouTube video

Digital Forensic Survival Podcast

• DFSP # 387 – Network Share Modifications

Hacker Valley Blue

• SANS Difference Makers Awards 2022 Highlights

YouTube video

InfoSec_Bret

• InfoSec Tools – AppGuard Solo – Round 2

YouTube video

John Hammond

• Mass Digital Forensics & Incident Response with Velociraptor

YouTube video

• Hunting Malware with Velociraptor (YARA & Memory Forensics)

YouTube video

• “Please Hack My Computer”

YouTube video

John Hubbard at ‘The Blueprint podcast’

• Strategy 11: Turn up the Volume by Expanding SOC Functionality

Karsten Hahn at Malware Analysis For Hedgehogs

• Why you can’t trust timestamps of Windows system files

YouTube video

Magnet Forensics

• How to Combine Magnet IGNITE and AXIOM Cyber to Streamline your Investigations

YouTube video

• How to Bring Mobile Device Data from VeraKey into Magnet AXIOM Cyber

YouTube video

• How to Set Up an Automated End-to-End iOS Workflow With GrayKey and Magnet AUTOMATE

YouTube video

• Customer Story | Brett Shavers – Digital Forensics Consultant, DFIR Training

YouTube video

• Oculus Quest “Meta” Forensics – Can It Be Done?

With the continued development of augmented and virtual reality, investigators in law enforcement and the private sector are starting to encounter crimes happening in the “Metaverse”. What methods can we use to extract data from Oculus devices and what challenges can we expect? This talk will dive into methods to get after the data from VR devices. We will discuss logical acquisitions, all the way to chip-off of an Oculus. Live demos with Oculus/Meta devices using Magnet AXIOM will be used durin...

• Establishing Connections: Illuminating Remote Access Artifacts in Windows

All too often during an investigation, it comes to light that adversaries are leveraging existing remote access tools for initial access and lateral movement. This trend is continuously on the rise and tends to go unnoticed due to the lack of available logging or not understanding what the available logs provide. This talk will not only address the aforementioned, but I also will be sharing custom tools that have proved to be beneficial in analysis against some of the most sophisticated actors. ...

Mostafa Yahia

• DFIR (Windows Forensics) Course: Image Mounting (FTK Imager)

YouTube video

• DFIR (Windows Forensics) Course: NTFS File System

YouTube video

• DFIR (Windows Forensics) Course: MFT Recap

YouTube video

• DFIR (Windows Forensics) Course: Master File Table $MFT

YouTube video

• DFIR (Windows Forensics) Course: Introduction to Windows Registry

YouTube video

• DFIR (Windows Forensics) Course: Data Recovery

YouTube video

• DFIR (Windows Forensics) Course: Alternate data streams (ADS)

YouTube video

• DFIR (Windows Forensics) Course: Windows NTFS Timestamps

YouTube video

MSAB

• How to Perform XRY File Validation?

YouTube video

SANS

• Upgrading Cloud Forensics with FOR509

YouTube video

• AI for Red Team & Malware Development

YouTube video

SANS Cloud Security

• Blue Skies and Clouds

YouTube video

• Top 3 Cloud Security Weaknesses, Misunderstandings, and Mitigations

YouTube video

The Cyber Mentor

• The Cyber Journey (Live with Markus Schober & Zach Hill)

YouTube video

The Defender’s Advantage Podcast

• Threat Trends: The Implications of the MOVEit Compromise