Listen to talk about computer forensic analysis, techniques, methodology, tool reviews and more.
http://digitalforensicsurvivalpodcast.libsyn.com/podcast
Gesamtlänge aller Episoden: 5 days 23 hours 33 minutes
DFSP # 236 - Apple FSEvents
This week I interview Steve Whalen of SUMURI about Apple FSEvent artifacts. Learn what they are and how to leverage them for investigations.
DFSP # 235 - Scheduled Task Change
This week I talk about examining Windows Scheduled Task change events for evidence of persistence.
DFSP # 234 - Divide & Conquer with Brian Carrier
This week I interview Brian Carrier, SVP & CTO of Basis Technology about his "Divide & Conquer" approach to DFIR investigations.
DFSP # 233 - New Scheduled Tasks
This week I talk about examining Windows New Scheduled Task events for evidence of persistence.
DFSP # 232 - Exam Process - Soup-to-Nuts
This week Chris of MSAB shares his recommended process for DFIR exam standardization.
DFSP # 231 - Service Change Triage
This week I talk about examining Windows Service modification events for evidence of persistence.
DFSP # 230 - User Activity Artifacts
This week I talk about the artifacts and methodology for examining user activity on Windows systems.
DFSP # 228 - Psychology of Reporting
This week I interview Steve Whalen of SUMURI and we talk about effective ways to report forensic findings.
DFSP # 227 - New Service Triage
This week I talk about examining Windows systems for evidence of persistence.