DFIR & Forensics

  • The Security Noob Interviews Amy Moles the CEO & Co-Founder of ArcPoint Forensics

    The Security Noob Interviews Amy Moles the CEO & Co-Founder of ArcPoint Forensics

    Amy Moles is the CEO & Co-Founder of ArcPoint Forensics, where Amy has been since January 2020. Prior to that, Amy gained experience in various roles at ManTech from August 2012 to September 2022. She also worked at SRA International as a Cyber Security Analyst and at the National Cyber Forensics and Training Alliance as…

  • The Security Noob interviews Kevin Pagano of stark4n6

    The Security Noob interviews Kevin Pagano of stark4n6

    Kevin Pagano is a seasoned cybersecurity professional specializing in Digital Forensics and Incident Response. With a strong technical background and a passion for unravelling complex cyber incidents, Kevin has become a trusted expert in investigating and mitigating cyber threats. When i first started getting into DFIR and was searching for all blogs and tools to…

  • Dead Simple Python Idiomatic Python for the Impatient Programmer by Jason C. McDonald (REVIEW)

    Dead Simple Python Idiomatic Python for the Impatient Programmer by Jason C. McDonald (REVIEW)

    “Dead Simple Python: Idiomatic Python for the Impatient Programmer” by Jason C. McDonald is a gem in the realm of Python programming literature, offering a refreshing and concise approach to mastering the language for both novice and seasoned developers alike. In a landscape often cluttered with verbose technical manuals, McDonald’s book stands out for its…

  • [DFIR TOOLS] JLECmd, what is it & how to use!

    [DFIR TOOLS] JLECmd, what is it & how to use!

    Following on from the previous [DFIR TOOLS] posts. First lets see what JumpLists are? Jump Lists are a feature in Microsoft Windows that provide quick access to recently used files, tasks, and specific actions associated with a particular application or program. They were introduced in Windows 7 and have been present in subsequent versions of…

  • Practical Linux Forensics, A Guide for Digital Investigators by Bruce Nikkel for No Starch Press REVIEW

    Practical Linux Forensics, A Guide for Digital Investigators by Bruce Nikkel for No Starch Press REVIEW

    This book is a comprehensive and informative guide for those interested in digital forensics and investigations. The book covers a wide range of topics related to forensic analysis of Linux systems, including data acquisition, evidence preservation, and various forensic techniques. It is a fantastic read, even before going deep into it forensically, the digital and…

  • [DFIR TOOLS] Hasher, what is it & how to use!

    [DFIR TOOLS] Hasher, what is it & how to use!

    Following on from the previous [DFIR TOOLS] posts. Hasher is a software application developed by Eric Zimmerman that is used to calculate and compare the hash values of files. A hash value is a unique code that is generated based on the contents of a file. By comparing the hash values of two files, it…

  • Interview With One of the Great DFIR Talents, Alessandro Di Carlo (samaritan_o)

    Interview With One of the Great DFIR Talents, Alessandro Di Carlo (samaritan_o)

    Alessandro is and unbelievable talent in the DFIR world, not only do I look forward to anything he writes either on his own site or over on The DFIR Report but on social media also. He knows his stuff and I just don’t say this because he writes at The DFIR Report who in my…

  • [DFIR TOOLS] EvtxECmd, what is it & how to use!

    [DFIR TOOLS] EvtxECmd, what is it & how to use!

    Following on from the previous [DFIR TOOLS] posts. This time we we are going to talk about one of my favourite tools EvtxECmd. So, what does Mr Zimmerman say about it:- But it is way more than just that, coupled with ‘Timeline Explorer’ it is a ridiculously powerful tool. Before I get into it there…

  • Interview with DFIR Legend Alexis Brignoni

    Interview with DFIR Legend Alexis Brignoni

    For this interview I have had the please to speak with someone who is so prevalent in DFIR, is very highly thought of and is a pleasure to have got the chance to chat. I have been trying to learn Python for what seems like forever, and it was where I first spent any kind…

  • HACKTORIA: Prisoner of War – Walkthrough

    HACKTORIA: Prisoner of War – Walkthrough

    Hello, Time for another walkthrough from over on Hacktoria, I will get to the more harder ones I just wont to do it in the Easy > Medium > Hard > Insane order. So here we go. Prisoner of WarGreetings Special Agent K. We have an urgent contract for the government of France. After their…