Listen to talk about computer forensic analysis, techniques, methodology, tool reviews and more.
http://digitalforensicsurvivalpodcast.libsyn.com/podcast
Gesamtlänge aller Episoden: 6 days 33 minutes
DFSP # 248 - Searchsploit
This week I talk utilizing the ExploitDB for DFIR investigations. Searchsploit is a command line search tool for Exploit-DB that allows you the power to perform detailed off-line searches through your locally checked-out copy of the repository....
DFSP # 247 - Startup Locations
This week is the last part of the Persistence-Fast-Triage mini-series. The final installation covers Windows startup locations.
DFSP # 246 - Investigation Lifecycle
This week I talk about the IR Investigation Lifecycle, or, the elements included within the incident handling process to ensure a complete investigation.
DFSP # 245 - Fetch and Execute
This week I talk about the use of RUNDLL32 to exploit information files (.INF) to "fetch and execute" malware.
DFSP # 244 - Registry Persistence Part 3
This week is part 3 of examining the Windows Registry for evidence of persistence and the focus is on Windows Registry Modification Event Records.
DFSP # 243 - Stomping the Clock
This week I talk about detecting time stomping on Windows and Linux systems.
DFSP # 242 - Registry Persistence Part 2
This week I talk about examining the Windows Registry for evidence of persistence.
DFSP # 241 - Forensic Hardware
This week I interview JASON ROSLEWICZ of SUMURI about the hardware that drives your forensics system.
DFSP # 239 - Registry Persistence Part 1
This week I talk about examining the Windows Registry for evidence of persistence.