-
Apr 11, 2018
Often, during a forensic analysis, you may need to explore an EWF image (usually a file with .E0X extension) in order to extract some artifacts.
… read more »
-
Apr 9, 2018
My own suggestions about keeping a Digital Chain of Custody
… read more »
-
Apr 6, 2018
Effective practice isn’t just a physical exercise: most of the effectiveness it’s in the mind too.
… read more »
-
Apr 4, 2018
Services like Amazon’s S3 have made it easier and cheaper than ever to store large quantities of data in the cloud. Used properly, S3 buckets are a useful tool, however a lot of companies fail to implement basic security resulting… read more »
-
Mar 30, 2018
Left hand slurs are an essential part of a good technical practice.
… read more »
-
Mar 28, 2018
Some days ago, during a chat with a friend who works in a small software development company, the webshells topic has come up.
… read more »
-
Mar 26, 2018
A new technique, called “Internal Monologue Attack”, allows and attack similar to Mimikatz without dumping memory area of LSASS process, avoiding antivirus and Windows Credential Guard.
… read more »
-
Mar 23, 2018
Sometimes, Youtube suggest me guitar related videos, and in most cases are very interesting contents.
… read more »
-
Mar 21, 2018
Some thought about Cambridge Analytica and Facebook privacy settings.
… read more »
-
Mar 19, 2018
The problem is always the same: every data that is stored into volatile memory can be extracted with the correct tools/techniques.
… read more »
-
Mar 16, 2018
Simple, but effective!
… read more »
-
Mar 14, 2018
In my point of view, SIFT is the definitive forensic toolkit!
… read more »
-
Mar 12, 2018
Nmap is the most known port scanner, written and maintained by Gordon Lyon (Fyodor).
… read more »
-
Mar 9, 2018
For several year i’ve played classical guitar in the traditional way…but some year ago i’ve fallen in love with the sonority of nylon guitar played with only the fingertips.
… read more »
-
Mar 7, 2018
Some months ago a serious vulnerability on EXIM has been disclosed (CVE-2017-16943), and in the last hours Meh Chang (from devco.re) discovered a buffer overflow that allows remote command execution on this MTA.
… read more »
-
Mar 5, 2018
2018’s security trends: malicious cryptomining
… read more »
-
Mar 2, 2018
In a comment on my article Volatility, my own cheatsheet (Part 3): Process Memory, Fabrizio asked me:
… read more »
-
Feb 28, 2018
Network printers use a various amount of protocols and firmwares which differ from vendor to vendor and model to model.
… read more »
-
Feb 26, 2018
Since 2014, the use of containers started making a big growth in IT, and especially in devops.
… read more »
-
Feb 23, 2018
Scales are a valuable tool to improve the coordination between both hands and develop a fluent phrasing.
… read more »