First, welcome to my renamed blog. I couldn't think of a good name for the blog years ago when I first started so I just settled for the most boring name I could think of, "Digital Forensics Blog". Granted, that was the main focus but it was just … [Continue Reading]
USB Device Redux, with Timelines
If you ask DFIR analysts, "What is best in life?", the answer you should hear is, "...creating timelines!" After all, industry luminaries such as Andrew said, "Time is the most important thing in life, and timelines are one of the most useful tools … [Continue Reading]
PoC: Cobalt Strike mitm Attack
I did this about 6 months ago, but this blog post didn’t get posted back then. I’m posting it now. I made a small Proof-of-Concept: cs-mitm.py is a mitmproxy script that intercepts Cobalt Strike traffic, decrypts it and injects its own … [Continue Reading]
- « Previous Page
- 1
- …
- 3
- 4
- 5
- 6
- 7
- …
- 626
- Next Page »