Andrea Fortuna
AboutSearch
Tools
DFIR Toolkit OSINT Toolkit
  • Sep 21, 2018

    "River Flows in You" by Yiruma: my ukulele arrangement

    A lot of musicians better than me says that “River flow in you” is a song too simple, cheesy and definitely overplayed: and actually i agree! However, the simple harmony and the repetitive structure makes it perfect for an ukulele… read more »
  • Sep 17, 2018

    Unix terminal, a simple cheatsheet

    Unix terminal is a powerful tool. … read more »
  • Sep 14, 2018

    The Secret Of Monkey Island: my ukulele arrangement of main theme

    Recently i’ve looked again an old ukulele project: the transcription of soundtracks from old video games. … read more »
  • Sep 10, 2018

    Information Gathering Tools: my updated shortlist

    During the first phase of a penetration test, especially when the test is performed in blackbox mode, is really important to gather correct informations from company websites and employees social accounts. … read more »
  • Sep 7, 2018

    Moon River, a basic Ukulele rendition

    “Moon river, wider than a mile I’m crossing you in style some day” … read more »
  • Sep 3, 2018

    Blockchain and Cybersecurity: evolving security technologies

    What does blockchain technology have to do with cybersecurity? … read more »
  • Aug 31, 2018

    Lágrima, by Francisco Tárrega: my Ukulele rendition

    The (unconfirmed) story goes that FranciscoTárrega composed Lágrima in 1881, … read more »
  • Aug 27, 2018

    Check your system for several "speculative execution" vulnerabilities with a single bash script

    After the first disclosure of CVEs related to speculative execution vulnerabilities (Meltdown and Spectre) on CPUs, a lot of researcher started to analyze the CPUs in order to find other vulerabilities and possible exploit techniques. … read more »
  • Aug 24, 2018

    Adelita, by Francisco Tárrega: my Ukulele rendition

    Adelita is a mazurka written by Francisco Tárrega: along with Capricho Árabe and Recuerdos de la Alhambra, it is one of his best-known works. … read more »
  • Aug 20, 2018

    pycodeinjector: a simple python Code Injection library

    In my previous post “Code injection on Windows using Python: a simple example”, i’ve explored the ctype python library and the usage of Windows API in order to perform a code injection on 32bit systems. … read more »
  • Aug 13, 2018

    Vikram Sharma talks about quantum random number generators and cryptography

    How quantum physics can make encryption stronger … read more »
  • Aug 6, 2018

    Code injection on Windows using Python: a simple example

    Recently i had to perform some comparative tests on a couple of whitelisting solutions. … read more »
  • Aug 1, 2018

    Diffy: an interesting DFIR tool released from Netflix's SIRT

    The Netflix Security Intelligence and Response Team (SIRT) has released (under Apache 2.0 license) a triage tool to help digital forensics and incident response teams quickly identify compromised hosts on which to focus their response. … read more »
  • Jul 30, 2018

    Malhunt: automated malware search in memory dumps

    Recently i’ve published this post focused on hunting malware using volatility and Yara rules. … read more »
  • Jul 27, 2018

    Julian Bream: My Life in Music

    A 2 hour video biography of the great guitarist Julian Bream. … read more »
  • Jul 25, 2018

    Digital forensics chronicles: image identification issues on large memory dump with Volatility

    Spoiler: shame on DumpIT! … read more »
  • Jul 23, 2018

    Some thoughts about Lateral Movement techniques

    The ability to quickly and reliably detect lateral movement in the network is one of the most important skills in information security today: the lateral movement attack phase represents the biggest difference between a targeted and strategic attacks and a simplistic… read more »
  • Jul 20, 2018

    Friday suggested listening: Paco De Lucia, Concierto de Aranjuez

    Joaquín Rodrigo’s Concierto de Aranjuez is one of the most popular concertos of all time, one of the most original masterpieces of the 20th century. … read more »
  • Jul 18, 2018

    TCPDUMP: a simple cheatsheet

    Having a solid grasp of tcpdump is mandatory for anyone desiring a thorough understanding of TCP/IP. … read more »
  • Jul 16, 2018

    Finding malware on memory dumps using <a href="https://www.andreafortuna.org/volatility/">Volatility</a> and Yara rules

    Previously i’ve talked a lot about Volatility, and i’ve published also some articles about YARA. … read more »
« Previous page Next page »

Andrea Fortuna

  • Andrea Fortuna
  • andrea@andreafortuna.org
  • andreafortuna
  • andreafortunaig
  • andrea-fortuna

Cybersecurity expert, software developer, experienced digital forensic analyst, musician