Blog

DFIR Breakdown: Using Certutil To Download Attack Tools

July 24, 2024

Start Reading

Access More! BitLocker, new File Explorer, and Export All Files (3.11 release)

June 24, 2024

Start Reading

Limitations of ImpHash for DFIR

Limitations of ImpHash for DFIR

June 20, 2024

Start Reading

Intro to ImpHash for DFIR: “Fuzzy” Malware Matching

June 10, 2024

Start Reading

DFIR Artifacts for a Trojan Defense and Remote Access

June 4, 2024

Start Reading

DFIR Breakdown: Kerberoasting

May 31, 2024

Start Reading

Collecting Linux DFIR Artifacts with UAC

May 23, 2024

Start Reading

How To DFIR Investigate with Cyber Triage and CrowdStrike Real Time Response

May 14, 2024

Start Reading

Adaptive vs Static File Collections for DFIR

May 8, 2024

Start Reading

3.10 adds Linux, Domain Controllers, and Fuzzy Malware Scanning for DFIR

May 1, 2024

Start Reading

How To Investigate Endpoints with Cyber Triage and Windows Defender

April 2, 2024

Start Reading

DFIR Next Steps: What to do after you find a suspicious Windows Network Logon Session

March 15, 2024

Start Reading