解析メモ

マルウェア解析してみたり解析に役に立ちそうと思ったことをメモする場所。このサイトはGoogle Analyticsを利用しています。

4n6 Week 41 – 2023 - SOFTWARE UPDATES

本エントリは This Week in 4n6 (FourAndSix=Forensics) で紹介された各記事の冒頭を表示し、チェックする記事をザッピングするために自動生成&投稿したものです。4n6 は こちら からご確認いただけます。

SOFTWARE UPDATES

Airbus Cybersecurity

Skip to content Toggle navigation Sign up Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions For Enterprise Teams Startups Education By Solution CI/CD & Automation DevOps DevSecOps Resources Learning Pathways...

ArcPoint

About Product FAQ Solution By Role Management IT / Engineering Digital Forensic Analyst By Industry Federal Government Family Law Law Enforcement News Contact Request a Demo ArcPoint Forensics Unveils ATRIO Digital Forensics 1.2.2 Update 6 Oct 2023 ArcPoint In the fast-paced world of digital forensics, staying ahead of the curve is essential. ArcPoint Forensics, a leading digital forensics solutions provider, understands this need better than most. That's why we're excited to announce the releas...

Atola

Release date: October 5, 2023 Bugfixes Possible Sentinel error 7 message preventing to connect to DiskSense unit Atola Insight Forensic 5.4 Release date: September 11, 2023 Blog announcement New Features Fully revamped Disk Editor: Infinity mode when reading a drive or image file. Instant navigation with hotkeys: Ctrl + End, Ctrl + Home, Page Up, Page Down. HEX byte signature search: Ctrl + F hotkey. Go to sector button (Ctrl + G hotkey). Data inspector to interpret bytes and groups of bytes in ...

Canadian Centre for Cyber Security

Latest Latest Compare Choose a tag to compare View all tags cccs-sgaron released this 06 Oct 19:41 v4.4.0.stable68 2fdd906 This commit was created on GitHub.com and signed with GitHub’s verified signature. GPG key ID: 4AEE18F83AFDEB23 Learn about vigilant mode. Hotfix for extended alerts with new screenshots Hotfix for blurry image in carrousel Assets 2 All reactions Footer © 2023 GitHub, Inc. Footer navigation Terms Privacy Security Status Docs Contact GitHub Pricing API Training Blog About You...

Datadog Security Labs

Skip to content Toggle navigation Sign up Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions For Enterprise Teams Startups Education By Solution CI/CD & Automation DevOps DevSecOps Resources Learning Pathways...

Didier Stevens

[…] Pingback by Week 41 – 2023 – This Week In 4n6 — Sunday 8 October 2023 @ 11:20 RSS feed for comments on this post. TrackBack URI Leave a Reply (comments are moderated) Δ This site uses Akismet to reduce spam. Learn how your comment data is processed. Pages About Didier Stevens Suite Links My Python Templates My Software Professional Programs Ariad Authenticode Tools Binary Tools CASToggle Cobalt Strike Tools Disitool EICARgen ExtractScripts FileGen FileScanner HeapLocker Network Appliance For...

[…] Pingback by Week 41 – 2023 – This Week In 4n6 — Sunday 8 October 2023 @ 11:20 RSS feed for comments on this post. TrackBack URI Leave a Reply (comments are moderated) Δ This site uses Akismet to reduce spam. Learn how your comment data is processed. Pages About Didier Stevens Suite Links My Python Templates My Software Professional Programs Ariad Authenticode Tools Binary Tools CASToggle Cobalt Strike Tools Disitool EICARgen ExtractScripts FileGen FileScanner HeapLocker Network Appliance For...

[…] Pingback by Week 41 – 2023 – This Week In 4n6 — Sunday 8 October 2023 @ 11:20 RSS feed for comments on this post. TrackBack URI Leave a Reply (comments are moderated) Δ This site uses Akismet to reduce spam. Learn how your comment data is processed. Pages About Didier Stevens Suite Links My Python Templates My Software Professional Programs Ariad Authenticode Tools Binary Tools CASToggle Cobalt Strike Tools Disitool EICARgen ExtractScripts FileGen FileScanner HeapLocker Network Appliance For...

[…] Pingback by Week 41 – 2023 – This Week In 4n6 — Sunday 8 October 2023 @ 11:20 RSS feed for comments on this post. TrackBack URI Leave a Reply (comments are moderated) Δ This site uses Akismet to reduce spam. Learn how your comment data is processed. Pages About Didier Stevens Suite Links My Python Templates My Software Professional Programs Ariad Authenticode Tools Binary Tools CASToggle Cobalt Strike Tools Disitool EICARgen ExtractScripts FileGen FileScanner HeapLocker Network Appliance For...

[…] Pingback by Week 41 – 2023 – This Week In 4n6 — Sunday 8 October 2023 @ 11:20 RSS feed for comments on this post. TrackBack URI Leave a Reply (comments are moderated) Δ This site uses Akismet to reduce spam. Learn how your comment data is processed. Pages About Didier Stevens Suite Links My Python Templates My Software Professional Programs Ariad Authenticode Tools Binary Tools CASToggle Cobalt Strike Tools Disitool EICARgen ExtractScripts FileGen FileScanner HeapLocker Network Appliance For...

[…] Pingback by Week 41 – 2023 – This Week In 4n6 — Sunday 8 October 2023 @ 11:21 RSS feed for comments on this post. TrackBack URI Leave a Reply (comments are moderated) Δ This site uses Akismet to reduce spam. Learn how your comment data is processed. Pages About Didier Stevens Suite Links My Python Templates My Software Professional Programs Ariad Authenticode Tools Binary Tools CASToggle Cobalt Strike Tools Disitool EICARgen ExtractScripts FileGen FileScanner HeapLocker Network Appliance For...

[…] Pingback by Week 41 – 2023 – This Week In 4n6 — Sunday 8 October 2023 @ 11:21 RSS feed for comments on this post. TrackBack URI Leave a Reply (comments are moderated) Δ This site uses Akismet to reduce spam. Learn how your comment data is processed. Pages About Didier Stevens Suite Links My Python Templates My Software Professional Programs Ariad Authenticode Tools Binary Tools CASToggle Cobalt Strike Tools Disitool EICARgen ExtractScripts FileGen FileScanner HeapLocker Network Appliance For...

[…] Pingback by Week 41 – 2023 – This Week In 4n6 — Sunday 8 October 2023 @ 11:21 RSS feed for comments on this post. TrackBack URI Leave a Reply (comments are moderated) Δ This site uses Akismet to reduce spam. Learn how your comment data is processed. Pages About Didier Stevens Suite Links My Python Templates My Software Professional Programs Ariad Authenticode Tools Binary Tools CASToggle Cobalt Strike Tools Disitool EICARgen ExtractScripts FileGen FileScanner HeapLocker Network Appliance For...

Digital Detective

NetAnalysis® v3.6 and HstEx® v5.6 ReleasedDigital Forensic Software, HstEx®, NetAnalysis® Release Notes for NetAnalysis® Version 3.6 Welcome to NetAnalysis® Version 3.6. We are excited to present this latest update, packed with new features and improvements to enhance your browser data, forensic analysis experience. New in this release, comprehensive support for Maxthon browser on Android, iOS, Windows and macOS. NetAnalysis® Examining Maxthon v7 Browser Data from Android New Features In this re...

Digital Sleuth

Skip to content Toggle navigation Sign up Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions For Enterprise Teams Startups Education By Solution CI/CD & Automation DevOps DevSecOps Resources Learning Pathways...

Doug Burks at Security Onion

Recently, we announced that Security Onion 2.4 has reached General Availability (GA) by releasing Security Onion 2.4.10://blog.securityonion.net/2023/08/security-onion-24-has-reached-general.htmlToday, we are excited to announce that Security Onion 2.4.20 is now available! It includes some new features and lots of bug fixes!//docs.securityonion.net/en/2.4/release-notes.html#changesAbout Security OnionSecurity Onion is a free and open platform built by defenders for defenders. It includes network...

Elcomsoft

Elcomsoft iOS Forensic Toolkit 8.41 is now available for Windows users in the all-new Windows edition. This new update maintains and extends the functionality of EIFT 7, which is now approaching the end of its life cycle. EIFT 8 is provided as a portable edition, eliminating the need for installation. In addition, the updated extraction agent can now access individual folders or file system metadata. Windows Edition Elcomsoft iOS Forensic Toolkit 8 for Windows retains and extends all the feature...

Eric Zimmerman

Erik Hjelmvik at Netresec

I am happy to announce the release of NetworkMiner 2.8.1 today! This new release brings a VNC parser to NetworkMiner, so that screenshots, keystrokes and clipboard data can be extracted from unencrypted VNC traffic. NetworkMiner 2.8.1 additionally includes parsers for command-and-control (C2) protocols used by njRAT, IcedID, QakBot and Bazar. We have also added extraction of files sent using a HTTP PUT request, which is the rare cousin to the more common POST request. NetworkMiner’s Images tab h...

Harel Segev

Latest Latest Compare Choose a tag to compare View all tags last-byte released this 05 Oct 22:19 · 5 commits to main since this release v1.13.0 c965ab3 This release implements detection for RID hijacking and the Suborner attack. Assets 3 👍 4 RomelSan, AndrewRathbun, ablescia, and mrjau reacted with thumbs up emoji All reactions 👍 4 reactions 4 people reacted Footer © 2023 GitHub, Inc. Footer navigation Terms Privacy Security Status Docs Contact GitHub Pricing API Training Blog About You can’t pe...

Harel Segev

Latest Latest Compare Choose a tag to compare View all tags harelsegev released this 05 Oct 11:34 v6.0.0 b243641 What's new? Fixed improper handling of unpaired surrogates in filenames Added a JSONL output option Improved CSV output formatting Improved CLI A more sensible default behavior Assets 4 All reactions Footer © 2023 GitHub, Inc. Footer navigation Terms Privacy Security Status Docs Contact GitHub Pricing API Training Blog About You can’t perform that action at this time.

Magnet Forensics

The latest version of Magnet AXIOM Cyber is now available! In this release, we focused on new features and improvements to make your investigations even faster and easier, no matter what type of case you’re working on – from internal investigations and incident response to supporting eDiscovery: Remote Endpoint File Listing Microsoft 365 Client Credentials Authentication Automatic Correction of GitHub YARA Links We’ve also updated and added to our artifact support. The updates are listed below. ...

We’re thrilled to announce the release of Magnet AXIOM 7.6! In this release, we have added several new and updated features to streamline your workflows and help make your digital evidence analysis and reporting faster and easier, including: 3D Printed Weapon Classifier – a new addition to the image classifier in Magnet.AI to automatically identify 3D printed weapons and components Protobuf Viewer Enhancements – view Hex and Text as native Protocol Buffer data Google Workspace Shared Drive Acqui...

Manabu Niseki

Skip to content Toggle navigation Sign up Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions For Enterprise Teams Startups Education By Solution CI/CD & Automation DevOps DevSecOps Resources Learning Pathways...

Mazars Tech

Skip to content Toggle navigation Sign up Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions For Enterprise Teams Startups Education By Solution CI/CD & Automation DevOps DevSecOps Resources Learning Pathways...

Microsoft

Skip to content Toggle navigation Sign up Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions For Enterprise Teams Startups Education By Solution CI/CD & Automation DevOps DevSecOps Resources Learning Pathways...

MSAB

/ Updates / Now Available: XRY 10.7, XAMN 7.7 and XEC 7.7 It’s here! The next chapter in DFIR excellence: remarkable upgrades and new features in MSAB’s flagship products We are thrilled to introduce the latest releases of XRY, XAMN, and XEC. They’re smarter, faster, and packed with exciting new capabilities. Ready to take a peek? Download new releases Try XRY free for 30 days The latest versions of the powerful MSAB products introduce a range of new features and other important enhancements. Ea...

Passware

October 04, 2023 Product Update Passware Kit Mobile introduces a multi-window mode that enables simultaneous passcode recovery, decryption, and data extraction for multiple mobile devices, making this tool an ideal solution for addressing a backlog of cases that involve locked mobile devices. Continue Reading Passware Kit 2023 v3 Now Available July 11, 2023 Product Update Passware Kit 2023 v3 enables users to unlock encrypted Apple Notes. It detects Apple Notes SQLite databases and recovers pass...

Serviço de Perícias em Informática

Skip to content Toggle navigation Sign up Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions For Enterprise Teams Startups Education By Solution CI/CD & Automation DevOps DevSecOps Resources Learning Pathways...

Three Planet Software

Pre-release Pre-release Compare Choose a tag to compare View all tags threeplanetssoftware released this 03 Oct 01:51 · 1 commit to master since this release v0.14.1-beta 2fa4fac Added check to ensure zgeneration exists. Assets 2 All reactions Footer © 2023 GitHub, Inc. Footer navigation Terms Privacy Security Status Docs Contact GitHub Pricing API Training Blog About You can’t perform that action at this time.

Rapid7

Skip to content Toggle navigation Sign up Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions For Enterprise Teams Startups Education By Solution CI/CD & Automation DevOps DevSecOps Resources Learning Pathways...

WithSecure Labs

Skip to content Toggle navigation Sign up Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions For Enterprise Teams Startups Education By Solution CI/CD & Automation DevOps DevSecOps Resources Learning Pathways...