Very often, we view data sources as somewhat one dimensional, and don't think about how we can really get value from that data source. We're usually working on a case, just that investigation that's in front of us, and we're so "heads down" that we … [Continue Reading]
Update: base64dump.py Version 0.0.23
This new version adds JSON input support, allowing,for example, to detect encoded payloads inside the registry: More info in an upcoming blog post. base64dump_V0_0_23.zip (http)MD5: 00D1E2344A6D09D3A2F18FC257F77090SHA256: … [Continue Reading]
StartupApproved\Run, pt II
On the heels of my last blog post on this topic, I had a couple of thoughts and insights that I wanted to research a bit, and then address. I wanted to take a look at ways that the StartupApproved\Run key might be impacted, so I started by grabbing … [Continue Reading]
- « Previous Page
- 1
- …
- 4
- 5
- 6
- 7
- 8
- …
- 634
- Next Page »