Collaborate Disseminate
Hello again readers and welcome back!! I had the pleasure of attending (and speaking at, more on that in a bit!) at the 10th SANS DFIR Summit this past week. It is one conference that I always try to attend, as it always has a fantastic lineup of DFIR … Continue reading A Brief Recap of the SANS DFIR Summit
Hello again readers and welcome back! I hope that this new year has been treating you well so far! I recently worked a case with an interesting twist that I never had to deal with before, so I figured I would make a blog post about it and share my expe… Continue reading How to load a SQL .bak file for analysis, without SQL Server previously installed
Good news everyone!! After a fairly busy year, the past few weeks I have finally had enough down time to work on adding some long overdue, and hopefully highly anticipated, features to the Live Response Collection. This version, named Bambiraptor, will… Continue reading Live Response Collection – Bambiraptor
Good news everyone!! After a fairly busy year, the past few weeks I have finally had enough down time to work on adding some long overdue, and hopefully highly anticipated, features to the Live Response Collection. This version, named Bambiraptor, will… Continue reading Live Response Collection – Bambiraptor
Hello again readers and welcome back! This blog post is going to be short, as the primary purpose is to publicly announce a new script, cleverly titled “allyouruarecordrebelongtous.pl”, which was in my “Who Watches The Smart Watches” presentation that … Continue reading Public release of "allyouruarecordarebelongtous" Perl script
Hello again readers and welcome back! This blog post is going to be short, as the primary purpose is to publicly announce a new script, cleverly titled “allyouruarecordrebelongtous.pl”, which was in my “Who Watches The Smart Watches” presentation that … Continue reading Public release of "allyouruarecordarebelongtous" Perl script
Hello again readers and welcome back! This blog post is going to be short, as the primary purpose is to publicly announce a new script, cleverly titled “allyouruarecordrebelongtous.pl”, which was in my “Who Watches The Smart Watches” presentation that … Continue reading Public release of "allyouruarecordarebelongtous" Perl script
Hello again readers and welcome back! This blog post is going to be fairly short, as the primary purpose is to publicly announce a new script, cleverly titled “allyourpebblearebelongtous.pl”. This Perl script will allow the user to parse out data from … Continue reading Public release of "allyourpebblearebelongtous" Perl script
Hello again readers and welcome back! This blog post is going to be fairly short, as the primary purpose is to publicly announce a new script, cleverly titled “allyourpebblearebelongtous.pl”. This Perl script will allow the user to parse out data from … Continue reading Public release of "allyourpebblearebelongtous" Perl script
Hello again readers, it has been busy over here for the past few months, but over the past few days there has been some really interesting research done by Casey Smith (@subTee) regarding COM+ objects, specifically using regsvr to access external … Continue reading Very quick blog post on "squiblydoo"