AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Submit Resources

Submit Feedback/Resource/Research Idea
Use this singular form for all Research Ideas, Resource submissions, and Site Feedback. We welcome any and all submissions to help make the site more useful to the DFIR community.
Read More
Submit DFIR/CyberSec/InfoSec Job Posting
Are you an employer looking for a qualified candidate to apply to your job posting? Use this form to have your job posted on AboutDFIR.com
Read More

Blog

AboutDFIR Site Content Update – 09/22/2023
Tools & Artifacts - Windows - new entry added - EventTransciptParser Tools & Artifacts - iOS - new entries added - iOS 17 - iOS 17 Forensics: Another Year, Another Byte of the Apple, iOS ...
InfoSec News Nuggets 09/21/2023
Sysadmin and spouse admit to part in 'massive' pirated Avaya licenses scam A sysadmin and his partner pleaded guilty this week to being part of a "massive" international ring that sold software licen...
InfoSec News Nuggets 09/20/2023
Threat Actor Claims Major TransUnion Data Breach  A notorious threat actor linked to previous big-name breaches has released several gigabytes of personal data stolen from credit agency TransUnion, r...
InfoSec News Nuggets 09/19/2023
The tech companies scanning your face while you shop  If you happen to miss the camera above the entrance, the sign will inform you. “FACIAL RECOGNITION & CCTV IN OPERATION ON THIS SITE” it decla...
GX-FA Exam: My Experience
Introduction I recently attended the 2023 SANS DFIR Summit in Austin, TX when I saw an advertisement for the brand new GIAC Experienced Forensic Analyst (GX-FA) certification. SANS offered a discount...
InfoSec News Nuggets 09/18/2023
TikTok hit with €345 million fine over privacy settings for children TikTok has been hit with a €345 million EU fine over the way it processes the personal data of children and teenage users, the fir...
AboutDFIR Site Content Update – 09/15/2023
Tools & Artifacts - Windows - new entries added - Level.io - RMM - Level.io: Forensic Artifacts and Evidence, Microsoft 365 (M365) - Wrangling the M365 UAL with SOF-ELK and CSV Data (Parts 1-3)...
InfoSec News Nuggets 09/15/2023
Auckland transport authority hit by suspected ransomware attack  The Auckland Transport (AT) transportation authority in New Zealand is dealing with a widespread outage caused by a cyber incident, im...
InfoSec News Nuggets 09/14/2023
This dangerous new Mac malware steals your credit card info People like to think that Apple’s Macs are more or less invulnerable to the assorted viruses and trojans that afflict Windows PCs, but that...
InfoSec News Nuggets 09/13/2023
'Anonymous Sudan' Sets Its Sights on Telegram in DDoS Attack  After Telegram — the free, encrypted, cloud-based messaging service — initiated a suspension of hacker group Anonymous Sudan's primary ac...
InfoSec News Nuggets 09/12/2023
Sri Lankan government loses months of data following ransomware attack  Sri Lanka’s government email network was hit by a ransomware attack that wiped months of data from thousands of email accounts,...
InfoSec News Nuggets 09/11/2023
Cyber professionals say industry urgently needs to confront mental health crisis  As the coronavirus pandemic swept the U.S. in early 2020, Pat, a security engineer, had more than just his own health...