Collect Arbitrary Files Any Time During Incident Response
June 27, 2019
As we’ve talked about many times before on this blog,...
Finding Intrusion Evidence in the Same Folder
May 14, 2019
Finding digital evidence during DFIR is hard and often involves...
Collect Faster by Collecting Less
April 1, 2019
With its agentless approach, the latest Cyber Triage release gives...
It’s About Time(lines)!
July 28, 2018
Using timestamps to determine what happened before or after an event is vital when investigating your endpoints. Timestamps allow you to see what programs were run or websites visited that may have been involved in a suspicious event. The latest Cyber Triage 2.3.0 release includes a new timeline feature that makes this type of investigation easier.