A Blog on digital investigations

Archive

Dockerized Snort3 for Rule Crafting and Triage Forensics

<2022-08-31>

Gradual Evidence Acquisition From an Erroneous Drive

<2021-10-23>

Defeating BlackMatter's string obfuscation

<2021-08-20>

Understanding BlackMatter's API Hashing

<2021-08-04>

Logical imaging with AFF4-L

<2021-08-03>

Analyzing VM images

<2021-06-20>

Dump Linux process memory

<2021-05-27>

Hello World

<2021-05-26>