- Jobs – old entries cleaned up, new entries added – Aperture, JPMorgan Chase & Co., Kraft Heinz, Mandiant (now part of Google Cloud), modePUSH, RSM, TrustedSec
- Tools & Artifacts – Windows – new entries added – AmCache – Evidence of Program Existence – Amcache, Event Tracing (ETW) – ETL File analysis in live, Triage Analysis – Chaos to Clarity: Why Triage is Not Optional, Tools – Invoke-LiveResponse
SANS has released an overview for the new Cyber Threat Intelligence course – FOR589: Cybercrime Intelligence. You can check out the overview video here! You can also find the course home page on the SANS website here!
Don’t forget to submit any missing forensicators to our Forensicators of DFIR page! Also, please consider submitting any DFIR or InfoSec related job openings via our form!
Fabian (@DFIRDominican)