Sinopsis
Listen to talk about computer forensic analysis, techniques, methodology, tool reviews and more.
Episodios
-
![DFSP # 155 - YARA Almighty]()
DFSP # 155 - YARA Almighty
05/02/2019 Duración: 20minThis week I talk about the forensic value of YARA.
-
![DFSP # 154 - OWASP: XXE]()
DFSP # 154 - OWASP: XXE
29/01/2019 Duración: 11minThis week I talk about OWASP's Number 4 vulnerability category from their top 10 list, XXE attacks. I explore the issue from a DFIR point of view.
-
![DFSP # 153 - Google Dorks]()
DFSP # 153 - Google Dorks
22/01/2019 Duración: 10minThis week I talk about the Google Hacking Database.
-
![DFSP # 152 - CEWL]()
DFSP # 152 - CEWL
15/01/2019 Duración: 12minThis week I talk about CEWL, a freely available tool for crawling websites to produce unique wordlists (think password attacks!)
-
![DFSP # 151 - Autoweb Project]()
DFSP # 151 - Autoweb Project
08/01/2019 Duración: 16minThis week I talk about my new Github page and the autoweb script.
-
![DFSP # 150 - AppLocker Bypass]()
DFSP # 150 - AppLocker Bypass
03/01/2019 Duración: 13minThis week I talk about Applocker Bypass from a DFIR point of view.
-
![DFSP # 149 - OWASP: Sensitive Data Exposure]()
DFSP # 149 - OWASP: Sensitive Data Exposure
27/12/2018 Duración: 18minThis week I talk about OWASP's Number 3 vulnerability category from their top 10 list, sensitive data exposure. I explore the issue from a DFIR point of view.
-
![DFSP # 148 - Threat Hunting Tips]()
DFSP # 148 - Threat Hunting Tips
18/12/2018 Duración: 34minThis week I talk about tips for building a threat hunting program.
-
![DFSP # 147 - Webshell Breakdown]()
DFSP # 147 - Webshell Breakdown
11/12/2018 Duración: 19minThis week I break down webshells for threat hunting and incident response triage.
-
![DFSP # 146 - Mimikatz Detection]()
DFSP # 146 - Mimikatz Detection
04/12/2018 Duración: 16minThis week I talk about contacting Mimikatz through windows event log.
-
![DFSP # 145 - PDF Forensics]()
DFSP # 145 - PDF Forensics
27/11/2018 Duración: 13minThis week I talk about PDF analysis tools to check for malicious indictors in PDFs.
-
![DFSP # 144 - OWASP: Broken Authentication]()
DFSP # 144 - OWASP: Broken Authentication
20/11/2018 Duración: 15minThis week I talk about OWASP and why you should be paying attention.
-
![DFSP # 143 - Tips from the Trenches]()
-
![DFSP # 142 - CRON 101]()
-
![DFSP # 141 - Logon Triage]()
DFSP # 141 - Logon Triage
30/10/2018 Duración: 12minThis week I talk about investigation strategies for logon events.
-
![DFSP # 140 - PCAP Hunting]()
DFSP # 140 - PCAP Hunting
23/10/2018 Duración: 18minThis week I talk about PCAP hunting strategies.
-
![DFSP # 139 - Linux Crypto-Mining Malware Tactics]()
DFSP # 139 - Linux Crypto-Mining Malware Tactics
16/10/2018 Duración: 33minThis week I interview Craig Rowland of Sandfly Security about crypto-mining attacks on Linux systems. Learn more about Sandfly at https://www.sandflysecurity.com
-
![DFSP # 138 - OWASP Top 10]()
DFSP # 138 - OWASP Top 10
09/10/2018 Duración: 19minThis week I talk about OWASP and why you should be paying attention.
-
![DFSP # 137 - Fast Flux]()
DFSP # 137 - Fast Flux
02/10/2018 Duración: 14minThis week I talk about the attack methodology known as Fast Flux.
-
![DFSP # 136 - Scheduled Task Triage Part 2]()
DFSP # 136 - Scheduled Task Triage Part 2
25/09/2018 Duración: 14minThis week I talk about details about what to look at in Scheduled Task records for forensic triage.
