Webinar This Week!

Join us on Thursday as we look at how EDR evasion works and tools to aid DFIR collection.

Register here: hubs.li/Q02ysZV_0

After registration, visit hubs.li/Q02ys_Dd0 to learn about some of the collection tools that will be discussed!

Week 21 - 2024 #DFIR
thisweekin4n6.com/2024/05/26/wee…

Just Released 🎉: A malicious LNK file leads to a compromised WordPress site hosting a HTA file. Upon deobfuscating this reveals a malicious Exe which is going to be run.

Hope you learn something about LNK forensics and enjoy some CyberChef tips!

youtu.be/XxHFr2xvPFc

Next week is our Capture the Flag Challenge! Register now to join us on May 30th at 10AM for a CTF challenge designed to educate incident responders on how to investigate attacks on cloud-based systems.

Register here!👉 hubs.li/Q02xPwsD0

FREE Hands-On Courses and Labs until May 27th! ⬇️

📢 #Yeti is now part of the ODFIR infrastructure automation project!

It's never been easier to connect it to a Timesketch instance and enrich all your sketches with juicy forensics intelligence ✨ More details here 👇🏻

osdfir.blogspot.com/2024/04/welcom…

#DFIR #CTI #Timesketch

Last week to submit for SANS DFIR Europe Summit 2024!

#dfir

survey.sans.org/jfe/form/SV_5a…

Finally back to actively and consistently updating the OSINT Framework again. There is still a good amount of clean up that needs to be done but very thankful for everyone that had sent in issues and PRs!
osintframework.com

This coming Friday, May 31st, 2024, join us for our 3rd annual SANS Institute | SANS DFIR #RansomwareSummit ! It's a FREE, virtual summit where you can learn a ton about #ransomware . Come have some fun!!

There are several sales going on including certifications, training, and books!

training.dfirdiva.com/current-discou…

#DFIR #MalwareAnalysis #Cybersecurity

The USCyberGames Kick-Off Celebration is coming up on May 30th!

The virtual Kick-Off event includes talks on Incident Handling, CyberChef, How to Stand Out as an Applicant in Cyber, Accessibility in Cybersecurity and more!

There is both a Competitive CTF and a Beginner's Game

How do the hackers hide their tracks on the Linux command line? Learn their methods in this video here:

youtu.be/4ZermRDdqOU

#DFIR #Linux #commandline

NEW LABS HAVE DROPPED.

🛰️ Frontier: easy, security operations
🐷 Piggy (we were psyching you out before): easy, #SecOps
🌑 VoidZoro: hard, #ReverseEngineering

Log in or sign up to hone those #BlueTeam skills: blueteamlabs.online

#BTLO #BlueTeam Labs #Cybersecurity

My friends at Microsoft Press have given me a couple of copies of the eBook for The Definitive Guide to KQL to give away. Retweet or comment below and I will put you in the draw. To give everyone a chance, I will give it 48 hours and then draw two winners. aka.ms/KQLMSPress/Sto…

We are running a Spring sale until May 27 at 23:59! This is the last sale until Black Friday.
25% OFF
Use Code: SPRING24
Applies to all courses and plans.
👉 academy.bluraven.io/plans-and-pric…
#Kusto #KQL #cybersecurity

Today's Training Tuesday Highlight is NDG!

They offer free and low cost training and online labs on several topics including Forensics, SOC, Security+, CySA+, Cisco Cyber Ops Associate, Linux and more!

The NDG Forensics v2 labs ($50) include:

Lab 01: Creating a Forensic Image

Happy Friday! 🎉 Waitlisting is now open for Investigating Linux Devices! 🐧 Head over to training.13cubed.com for more info and to sign up, and you'll be notified when it releases. #DFIR

With Whatsmyname.app currently down, I had to switch to another username enumeration tool. This highlights the importance of having multiple OSINT tool options, as they can sometimes become unavailable. While we wait for Whatsmyname.app to return, here are some

There are several sales going on including certifications, training, and books!

training.dfirdiva.com/current-discou…

#DFIR #MalwareAnalysis #Cybersecurity

The latest episode of Infosec Toolshed is up! This episode features KAPE from Kroll written by Eric Zimmerman.

You will also hear from SANS DFIR instructors Ovie and Kevin Ripa

Come hear the origin story of this fascinating tool from its creator!