Collaborate Disseminate
I am exploiting bluekeep vulnerability in windows server 2008 R2 using metasploit framework. When I run the exploit windows/rdp/cve_2019_0708_bluekeep_rce, it ends in BSOD on server and then server restarts. I searched on internet and fou… Continue reading Finding NonPagedPool Start and End Address using volatility
I use gmail and want to find the original sent date of an email they sent someone else 1/2 years ago and have forwarded me just now. Is there any way to find this i.e encrypted in message id or something like that?
I use gmail and want to find the original sent date of an email they sent someone else 1/2 years ago and have forwarded me just now. Is there any way to find this i.e encrypted in message id or something like that?
I know that one can see the modification, access, and creation date of a file on Windows. And that the creation date, as well as other dates, can be modified at will. I just wonder if it is possible to forensically determine who created a … Continue reading Can someone know who created a cpp file?
Bellingcat has investigated the near-fatal poisoning of Alexey Navalny by the Russian FSB back in August. The details display some impressive traffic analysis. Navalny got a confession out of one of the poisoners, displaying some masterful social engin… Continue reading Investigating the Navalny Poisoning
Gizmodo is reporting that schools in the US are buying equipment to unlock cell phones from companies like Cellebrite:
Gizmodo has reviewed similar accounting documents from eight school districts, seven of which are in Texas, showing that administrators paid as much $11,582 for the controversial surveillance technology. Known as mobile device forensic tools (MDFTs), this type of tech is able to siphon text messages, photos, and application data from student’s devices. Together, the districts encompass hundreds of schools, potentially exposing hundreds of thousands of students to invasive cell phone searches. …
Continue reading US Schools Are Buying Cell Phone Unlocking Systems
When a car hits something crossing the road in a dark, rural setting, it can occasionally be difficult for the driver to later say if it was a person or an animal – that, or they may just lie and say it was the latter. A new blood-analyzing device, how… Continue reading Forensic tech quickly determines if bloodstains are human
Let’s assume I have a Windows 10 computer and my login password has an entropy of infinity.
If I did not encrypt my entire hard-drive, does it matter how secure my password is? Is it possible for someone to plug the hard-drive into another… Continue reading Is a password-protected stolen laptop safe?
Doing some research on software piracy for an assignment. I’m curious has to what extent pirated software can be considered pirated if it has been modified to a point where most of the code base is different to that of it’s nonpirated coun… Continue reading Would pirated software that is now programmatically different but functionally identical still be considered pirated? [closed]
In Windows, Autoruns tool is a really helpful tool for forensic investigators to help them find suspicious startup executables and filter the benign ones.
but i couldn’t anything good like this in linux, so what is the easiest way to achie… Continue reading What is the equivalent of autoruns tool in linux for finding suspicious startup executables? [migrated]