loader from loading.io

DFSP # 243 - Stomping the Clock

Digital Forensic Survival Podcast

Release Date: 10/13/2020

DFSP # 249 - Linux Fileless Attacks show art DFSP # 249 - Linux Fileless Attacks

Digital Forensic Survival Podcast

This week I go over a method to detect fileless malware on Linux systems.

info_outline
DFSP # 248 - Searchsploit show art DFSP # 248 - Searchsploit

Digital Forensic Survival Podcast

This week I talk utilizing the ExploitDB for DFIR investigations. Searchsploit is a command line search tool for Exploit-DB that allows you the power to perform detailed off-line searches through your locally checked-out copy of the repository. This capability is particularly useful for security assessments on segregated or air-gapped networks without Internet access.

info_outline
DFSP # 247 - Startup Locations show art DFSP # 247 - Startup Locations

Digital Forensic Survival Podcast

This week is the last part of the Persistence-Fast-Triage mini-series. The final installation covers Windows startup locations.

info_outline
DFSP # 246 - Investigation Lifecycle show art DFSP # 246 - Investigation Lifecycle

Digital Forensic Survival Podcast

This week I talk about the IR Investigation Lifecycle, or, the elements included within the incident handling process to ensure a complete investigation.

info_outline
DFSP # 245 - Fetch and Execute show art DFSP # 245 - Fetch and Execute

Digital Forensic Survival Podcast

This week I talk about the use of RUNDLL32 to exploit information files (.INF) to "fetch and execute" malware.

info_outline
DFSP # 244 - Registry Persistence Part 3 show art DFSP # 244 - Registry Persistence Part 3

Digital Forensic Survival Podcast

This week is part 3 of examining the Windows Registry for evidence of persistence and the focus is on Windows Registry Modification Event Records.

info_outline
DFSP # 243 - Stomping the Clock show art DFSP # 243 - Stomping the Clock

Digital Forensic Survival Podcast

This week I talk about detecting time stomping on Windows and Linux systems.

info_outline
DFSP # 242 - Registry Persistence Part 2 show art DFSP # 242 - Registry Persistence Part 2

Digital Forensic Survival Podcast

This week I talk about examining the Windows Registry for evidence of persistence.

info_outline
DFSP # 241 - Forensic Hardware show art DFSP # 241 - Forensic Hardware

Digital Forensic Survival Podcast

This week I interview JASON ROSLEWICZ of SUMURI about the hardware that drives your forensics system.

info_outline
DFSP # 240 - MDM show art DFSP # 240 - MDM

Digital Forensic Survival Podcast

This week is part 3 of the Mobile Attack series.

info_outline
 
More Episodes

This week I talk about detecting time stomping on Windows and Linux systems.