本エントリは This Week in 4n6 (FourAndSix=Forensics) で紹介された各記事の冒頭を表示し、チェックする記事をザッピングするために自動生成&投稿したものです。4n6 は こちら からご確認いただけます。
MISCELLANEOUS
Atola
Report this article Atola Technology Atola Technology Fast forensic imaging. Even with bad drives. Published Jan 9, 2024 + Follow Hi there!Welcome back to Plug, Image, Repeat, the monthly newsletter where we share practical tips and tricks to improve your experience in digital forensics. We’re glad you’re here.🤗In our last episode, we discussed useful resources for professional development. To further enhance your practical knowledge, professional development and networking opportunities, we rec...
Fabian Mendoza at AboutDFIR
AboutDFIR Site Content Update – 01/12/2024 By Fabian MendozaOn January 12, 2024January 12, 2024 Jobs – old entries cleaned up, new entries added – Atlassian, Cadence, Calix, CrowdStrike, SAIC Tools & Artifacts – AWS – new entries added – AWS Cloud Forensics – The Importance of Depth: Cloud Forensics Beyond Log Analysis, EC2 (Elastic Compute Cloud) – The Cado Platform can now Capture AWS EC2 Systems into E01 Format Tools & Artifacts – DVR/Multimedia – new entry added – ExifTool – ExifTool Basics ...
Brett Shavers
Cado Security
Cellebrite
Emina Doherty and Anastasia Shek at Arsenal Recon
Publicly-Accessible Disk Images Grid for DFIR January 12th, 2024 Emina Doherty Anastasia Shek Glimpse of Publicly-Accessible Disk Images Grid for DFIR “Does anyone know which publicly-accessible disk images contain (insert your artifact of interest)?”We have been using publicly-accessible disk images for testing and training over many years. As we were testing internal builds of Arsenal Image Mounter toward the end of 2023, we started thinking about all the things about these disk images which w...
Forensic Focus
Jeffrey Appel
January 10, 2024 7 min read Common mistakes during Microsoft Defender for Endpoint deployments September 14, 2023 24 min read How to use Automatic Attack Disruption in Microsoft 365 Defender (BEC, AiTM & HumOR) August 29, 2023 13 min read How to troubleshoot Live Response in Defender for Endpoint August 15, 2023 11 min read Onboard and configure Defender for Endpoint for non-persistent VDI environments August 8, 2023 15 min read How to use Defender for IoT firmware Scanning for checking potentia...
Luke Bradley
Report this article Luke Bradley Luke Bradley Director, SouthEast Asia and Australia at Alvarez and Marsal | Disputes and Investigations | Forensic Technology Services Published Jan 11, 2024 + Follow As businesses face the winds of change, the need for strategic restructuring has become more prevalent than ever. In this era of digitization, the role of digital forensic data collection in guiding businesses through the intricacies of restructuring and insolvency cannot be overstated. This article...
Magnet Forensics
Continuing to add to the Android support for Magnet GRAYKEY, we are thrilled to announce the addition of Google Pixel series 6 and 8 to our list of supported mobile devices, which includes the Pixel 6a and Pro models in this series. With this key addition to our Android coverage, we are helping to ensure you have the tools necessary to access and examine the mobile devices you encounter during your criminal investigations. To review the release notes for this release, visit our support portal (l...
Magnet AXIOM’s Portable Case is a lightweight version of the full capabilities found in AXIOM—designed for easy access and analysis of forensic findings. It shares the ability to investigate the case data from digital devices and produce reports with non-technical stakeholders, such as investigators and attorneys. A fellow investigator says, “What got us here isn’t going to get us there.” He is right. One of the major challenges we face in digital forensics is the sheer volume of cases, devices,...
MISP
With Zeek 6.0, experimental JavaScript support was added to Zeek, making Node.js and its vast ecosystem available to Zeek script developers to more easily integrate with external systems. MISP Integration As a tech-demo, the popular Zeek package dovehawk has been re-implemented using JavaScript. The re-implementation is named zeekjs-misp and has been published on GitHub. In essence, the new package uses Node’s module to communicate with MISP’s Rest API, achieving the following: Populate Zeek’s I...
- go to homepage Toggle Navigation Home Features Data Models Data Models MISP core format MISP taxonomies MISP Galaxy MISP Objects Default feeds Documentation Documentation Documentation OpenAPI Tools Support Contributing Research projects Research topics Legal License Legal and policy GDPR ISO/IEC 27010:2015 NISD Communities Download Events Upcoming events Past events Webinars Hackathon MISP Summit News Contact Reaching us Contact Us Press inquiries Professional Services Commercial Support Secu...
