本エントリは This Week in 4n6 (FourAndSix=Forensics) で紹介された各記事の冒頭を表示し、チェックする記事をザッピングするために自動生成＆投稿したものです。4n6 は こちら からご確認いただけます。

SOFTWARE UPDATES

Acelab

• The New PC-3000 Flash Software Ver. 9.1.x has been released

August08, 2024 The New PC-3000 Flash Software Ver. 9.1.x has been released Dear Users of PC-3000 Flash, We prepared and uploaded the latest updated version of the PC-3000 Flash - 9.1.x to our TS Portal. The authorized PC-3000 Flash technical support users with active TS contracts will get the latest software version on the Personal Pages on the ACE Lab Technical Support Portal. A LIST OF MAIN ENHANCEMENTS: ADDED translator type for new SanDisk mSD/SD/UFD based on SanDisk BiCS4 TLC memory chips E...

ADF Solutions

• New Release of Forensic Triage Software: Triage-Investigator

• New Release of Media Exploitation Software: Triage-G2

Crowdstrike

• Falconpy Version 1.4.5

Skip to content Navigation Menu Toggle navigation Sign in Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments GitHub Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions By size Enterprise Teams Startups By industry Healthcare Financial services Manufacturing By...

Datadog Security Labs

• Introducing GuardDog 2.0: YARA scanning, user-supplied rules, and Golang support

August 8, 2024 open source software supply-chain security twitter reddit on this page Scan packages with YARA rulesUse custom source code rulesEarly support for GolangImproved data exfiltration and DLL hijacking rulesHow Datadog Software Composition Analysis (SCA) leverages GuardDogCheck out GuardDog v2.0 today Ian Kretz Security Researcher Sebastian Obregoso Security Researcher GuardDog is an open source project at Datadog for identifying malicious PyPI and npm packages. Using GuardDog’s one-...

Jon Stewart

• Lightgrep 1.5.0

is released! /www.lightgrep.com Lightgrep is Stroz Friedberg’s multipattern regular expression search engine for digital forensics and incident response. It reliably searches binary data streams for thousands of patterns in over one hundred encodings. New with this release: * a lightgrep command-line executable is now bundled for easy searching of files (very useful for intensive log greppin’). * relicensed under the Apache 2 Software license * minor API improvements, bug fixes, and optimization...

Manabu Niseki

• Mihari v7.6.3

Skip to content Navigation Menu Toggle navigation Sign in Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments GitHub Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions By size Enterprise Teams Startups By industry Healthcare Financial services Manufacturing By...

Metaspike

• Forensic Email Intelligence – 2.2.158

Forensic Email IntelligenceIdeasRoadmapAnnouncementsSearch Ideas...⌘KLog inSign upAnnouncementsFilterNew updates and improvements to Forensic Email IntelligenceAll Announcements6 Aug, 20242.2.158Release🔥Trace View—Added a new tab to FEI Viewer that visualizes Received headers, where available. ✔️Improved detection of private or reserved IPv6 addresses.✔️Improved parsing timestamps of malformed Received headers.✔️Load performance improvements when navigating between items.✔️Hardening against unex...

MISP

• MISP 2.4.195 – hot summer olympic release

MISP 2.4.195 - hot summer olympic release - go to homepage Toggle Navigation Home Features Data Models Data Models MISP core format MISP taxonomies MISP Galaxy MISP Objects Default feeds Documentation Documentation Documentation OpenAPI Tools Support Contributing Research projects Research topics Legal License Legal and policy GDPR ISO/IEC 27010:2015 NISD Communities Download Events Upcoming events Past events Webinars Hackathon MISP Summit News Contact Reaching us Contact Us Press inquiries Pro...

OpenCTI

• 6.2.12

Version 6.2.12 Latest Latest Compare Choose a tag to compare Loading View all tags Filigran-Automation released this 07 Aug 15:18 · 10 commits to master since this release 6.2.12 8ac5be1 This commit was signed with the committer’s verified signature. Filigran-Automation Filigran Automation GPG key ID: C708FDB840E80D34 Learn about vigilant mode. Bug Fixes: #7975 Stream consume with inferences error too_long_ine_exception #7945 Bypass External Ref not working as expecting #7939 Button to share wit...

Jack Naglieri at Panther Labs

• Introducing pypanther: The Future of Code-Driven Detection and Response

Jack Naglieri Aug 8, 2024 8 min read Today, we are thrilled to announce pypanther, a Python library for scaling SIEM rule management and generating the most contextualized alerts for your organization: “Pypanther is a revolutionary change to detection as code; A simple solution enabling you to make fast pin-point accurate changes to individual rules along with platform-wide rollouts in one go.”– Paul Harrison, Mattermost The pypanther framework offers a practical shift in Detection as Code. Unli...

radare2

• 5.9.4

5.9.4 Latest Latest Compare Choose a tag to compare Loading View all tags github-actions released this 08 Aug 14:38 · 1 commit to master since this release 5.9.4 b77e3f8 Release Notes Version: 5.9.4 Previous: 5.9.2 Commits: 276 Contributors: 18 curl -Ls //github.com/radareorg/radare2/releases/download/5.9.4/radare2-5.9.4.tar.xz | tar xJv radare2-5.9.4/sys/install.sh Highlights More details Authors Adel Brandon Lin Claudio Jeker Enno T. Boland Francesco Tamagni Lars Haukli Richard Patel Sylvain P...

SigmaHQ

• pySigma v0.11.10

Skip to content Navigation Menu Toggle navigation Sign in Product Actions Automate any workflow Packages Host and manage packages Security Find and fix vulnerabilities Codespaces Instant dev environments GitHub Copilot Write better code with AI Code review Manage code changes Issues Plan and track work Discussions Collaborate outside of code Explore All features Documentation GitHub Skills Blog Solutions By size Enterprise Teams Startups By industry Healthcare Financial services Manufacturing By...

Paolo Dal Checco at Studio d’Informatica Forense

• Nuova release 2024 di Tsurugi Linux, live distro gratuita e open source per informatica forense

Pubblicato il 9 Agosto 2024 da Paolo Dal Checco Il 30 luglio 2024 è stata pubblicata per il download gratuito la nuova release della live distro d’informatica forense “Tsurugi” nella versione lab 2024.1 (da 16.7G) e in macchina virtuale (da 33.7G). Strumento spesso essenziale per chi si occupa d’informatica forense, la forensic distro Tsurugi è da anni – insieme alla distribuzione Caine Linux – una delle più utilizzate in ambito digital forensics. Tsurugi Linux è una distribuzione Linux orientat...

Yogesh Khatri at ‘Swift Forensics’

• NSKeyedArchive Deserializer update

A long time ago I wrote some code to make NSKeyedArchives (NSKA) human readable, basically de-serializing the data. It was then converted to a library for use in other projects like iLeapp and mac_apt. I revisited this last week and found and fixed a minor bug. While at it, I also added an extra capability, mostly for the folks who don't prefer to touch code. Previously, this library only worked with NSKA files. If a file was a normal plist, it would return an exception complaining about not bei...