Andrea Fortuna
AboutSearch
Tools
DFIR Toolkit OSINT Toolkit
  • Nov 10, 2017

    Cloud Security Suite: auditing the security of a AWS infrastructure

    CS Suite is tool for auditing the security posture of the AWS infrastructure, using current open source tools capabilities. … read more »
  • Nov 8, 2017

    Share files from command line with transfer.sh: a simple cheatsheet

    Transfer.sh is a website that helps users to share files from the command-line an efficient way. … read more »
  • Nov 7, 2017

    WPSeku: a Black-box Wordpress Security Scanner

    WPSeku is a Black-box WordPress vulnerability scanner that can be used to scan remote WordPress installations to find security issues. … read more »
  • Nov 6, 2017

    What is Canvas Fingerprinting and how the companies use it to track you online

    Recently Mozilla planned to display permission prompts if a website attempt to use HTML5 Canvas Image Data in the Firefox web browser: in fact, this HTML5 element is often used to tracking users with a technique called “Canvas Fingerprinting” … read more »
  • Nov 2, 2017

    GoCrack: managed password cracking tool by FireEye

    FireEye released GoCrack, a tool designed to password cracking tasks across multiple servers. … read more »
  • Oct 31, 2017

    BleachBit: a good opensource alternative to CCleaner?

    After the CCleaner incident, a lot of friends and colleagues asked me a good alternative to the Piriform’s tool. … read more »
  • Oct 30, 2017

    How to recover files encrypted by BadRabbit ransomware?

    Researchers at Kaspersky Lab has discovered that some victims may be able to recover their files without paying any ransom. … read more »
  • Oct 25, 2017

    BadRabbit ransomware: suggested readings

    Spreads via network, currently hits Russia, Ukraine, Germany, Japan, and Turkey … read more »
  • Oct 23, 2017

    Windows Security Identifiers (SIDs)

    SID is one of the core data structures in the NT security infrastructure … read more »
  • Oct 20, 2017

    Windows event logs in forensic analysis

    On Windows systems, event logs contains a lot of useful information about the system and its users. … read more »
  • Oct 19, 2017

    Key reinstallation attacks: my suggested readings

    Release the KRACKen! … read more »
  • Oct 18, 2017

    Windows registry in forensic analysis

    Windows registry contains information that are helpful during a forensic analysis … read more »
  • Oct 16, 2017

    Amcache and Shimcache in forensic analysis

    Amcache and Shimcache can provide a timeline of which program was executed and when it was first run and last modified … read more »
  • Oct 11, 2017

    Some thoughts about NTFS Filesystem

    Some information raised during preparation of GCFA exam … read more »
  • Oct 10, 2017

    Wifite 2: a complete rewrite of Wifite

    A Python script for auditing wireless networks … read more »
  • Oct 9, 2017

    Understanding Process Hollowing

    A technique used by malware author to evade defenses and detection analysis of malicious processes execution … read more »
  • Oct 6, 2017

    MAC(b) times in Windows forensic analysis

    Essential information during timeline analysis … read more »
  • Oct 4, 2017

    Some thoughts about FAT Filesystem

    Some information raised during preparation of GCFA exam … read more »
  • Oct 2, 2017

    Volume Shadow Copies in forensic analysis

    Integral part to the Windows Operating System and essential for DFIR analysts … read more »
  • Sep 29, 2017

    BitCracker: open source BitLocker password cracking tool

    A mono-GPU password cracking tool … read more »
« Previous page Next page »

Andrea Fortuna

  • Andrea Fortuna
  • andrea@andreafortuna.org
  • andreafortuna
  • andreafortunaig
  • andrea-fortuna

Cybersecurity expert, software developer, experienced digital forensic analyst, musician