In this episode, we’ll show HOW and WHERE find evidence of hack. These 5 places might not be your first choice when you start investigation… and that’s exactly why you should check them first.
Read more
Sysmon can be useful for you because it provides a pretty detailed monitoring about what is happening in the operating system, starting from process monitoring, going through monitoring all the network and ending up with a discovery of the different types of exploitation techniques.
Read more
This time, we are going to be talking about memory dump analysis which is a pretty interesting subject as usual. You’ll learn how to perform memory dump and how to, by using different types of tools, extract information from it.
Read more