AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

AboutDFIR Site Content Update – 03/22/2024

  • Jobs – old entries cleaned up, new entries added – Arete, CrowdStrike, Kivu Consulting, Kroll, Mandiant (now part of Google Cloud), Palo Alto Networks Unit 42, Salesforce, Surefire Cyber, Trustwave
  • Tools & Artifacts – Android – new entry added – WhatsApp – Android WhatsApp Forensics. Part II: Analysis
  • Tools & Artifacts – File Systems – new entry added – NTFS – NTFS Artifacts
  • Tools & Artifacts – iOS – new entries added – Apple Accounts – Investigating Apple Accounts, Apple Crash Logs – Investigating Apple Crash Logs, checkm8 – checkm8: Advancements in iOS 16 Forensic Extraction
  • Tools & Artifacts – Windows – new entries added – Event Logs – DFIR Next Steps: What to do after you find a suspicious Windows Network Logon Session, Event Logs – Microsoft Office Alerts (“OAlerts”)

The MAGNET Virtual Summit 2024 concluded on March 7th and Doug Metz (@dwmetz) has released a nice write-up on the CTF that took place during this event. Check out his write-up here!

Don’t forget to submit any missing forensicators to our Forensicators of DFIR page! Also, please consider submitting any DFIR or InfoSec related job openings via our form!

Fabian (@DFIRDominican)

Related Posts