loader from loading.io

DFSP # 185 - Understanding Linux Executables

Digital Forensic Survival Podcast

Release Date: 09/30/2019

DFSP # 240 - MDM show art DFSP # 240 - MDM

Digital Forensic Survival Podcast

This week is part 3 of the Mobile Attack series.

info_outline
DFSP # 239 - Registry Persistence Part 1 show art DFSP # 239 - Registry Persistence Part 1

Digital Forensic Survival Podcast

This week I talk about examining the Windows Registry for evidence of persistence.

info_outline
DFSP # 238 - Bash Attacks show art DFSP # 238 - Bash Attacks

Digital Forensic Survival Podcast

This week I talk about the use of Bash commands in crypto-mining attacks.

info_outline
DFSP # 237 - Attack Shimming show art DFSP # 237 - Attack Shimming

Digital Forensic Survival Podcast

This week I talk about detecting persistence via Attack Shimming artifacts.

info_outline
DFSP # 236 - Apple FSEvents show art DFSP # 236 - Apple FSEvents

Digital Forensic Survival Podcast

This week I interview Steve Whalen of SUMURI about Apple FSEvent artifacts. Learn what they are and how to leverage them for investigations.

info_outline
DFSP # 235 - Scheduled Task Change show art DFSP # 235 - Scheduled Task Change

Digital Forensic Survival Podcast

This week I talk about examining Windows Scheduled Task change events for evidence of persistence.

info_outline
DFSP # 234 - Divide & Conquer with Brian Carrier show art DFSP # 234 - Divide & Conquer with Brian Carrier

Digital Forensic Survival Podcast

This week I interview Brian Carrier, SVP & CTO of Basis Technology about his "Divide & Conquer" approach to DFIR investigations.

info_outline
DFSP # 233 - New Scheduled Tasks show art DFSP # 233 - New Scheduled Tasks

Digital Forensic Survival Podcast

This week I talk about examining Windows New Scheduled Task events for evidence of persistence.

info_outline
DFSP # 232 - Exam Process - Soup-to-Nuts show art DFSP # 232 - Exam Process - Soup-to-Nuts

Digital Forensic Survival Podcast

This week Chris of MSAB shares his recommended process for DFIR exam standardization.

info_outline
DFSP # 231 - Service Change Triage show art DFSP # 231 - Service Change Triage

Digital Forensic Survival Podcast

This week I talk about examining Windows Service modification events for evidence of persistence.

info_outline
 
More Episodes

This week I cover how to approach Linux binaries during investigations.