Ali SeferWindows Forensics Fundamentals | Part OneIn digital forensics and incident response (DFIR), Windows operating systems are among the most commonly analyzed environments. After a…6h ago
Invictus Incident ResponseRansomware in the cloudWe have moved this blog to our own website. This allows free access for everyone.Apr 13, 20233
ToumoTryHackMe Windows Forensics 1 Write-UpFor me, it’s the final stretch to completing the SOC Level 1 learning path. I have completed all the phishing rooms already early on before…Aug 6, 2023Aug 6, 2023
Raj UpadhyayFeatureUsage — Evidence of Execution ?? || AppSwitchedFeatureUsage artifact are located in NTUSER.DAT registry file under the following key:16h ago16h ago
ToumoTryHackMe Redline Write-UpWe just finished the Autopsy room and now we will be learning how to use Redline. I’ve never used it, nor have I heard of it before, so…Aug 8, 20232Aug 8, 20232
Ali SeferWindows Forensics Fundamentals | Part OneIn digital forensics and incident response (DFIR), Windows operating systems are among the most commonly analyzed environments. After a…6h ago
Invictus Incident ResponseRansomware in the cloudWe have moved this blog to our own website. This allows free access for everyone.Apr 13, 20233
ToumoTryHackMe Windows Forensics 1 Write-UpFor me, it’s the final stretch to completing the SOC Level 1 learning path. I have completed all the phishing rooms already early on before…Aug 6, 2023
Raj UpadhyayFeatureUsage — Evidence of Execution ?? || AppSwitchedFeatureUsage artifact are located in NTUSER.DAT registry file under the following key:16h ago
ToumoTryHackMe Redline Write-UpWe just finished the Autopsy room and now we will be learning how to use Redline. I’ve never used it, nor have I heard of it before, so…Aug 8, 20232
Steve BowersinBlue Team BlogDigging In With DFIR!Working Through The HackTheBox Sherlock: Reaper.5h ago
Brayden ProckishHackTheBox Sherlock Writeup: OpTinselTrace-5You’ll notice a lot of our critical server infrastructure was recently transferred from the domain of our MSSP — Forela.local over to…16h ago