AboutDFIR Site Content Update 12/4/21

Happy Holidays! It's the first post in December so you're probably going to see that greeting at least once more. Speaking of holidays, it's almost Holiday Hack time! Sign up to be notified for the SANS Holiday Hack and KringleCon 2021 talks at this link or try your hand at the 2020 Holiday Hack while you wait. Don't know what the Holiday Hack is? "The SANS Holiday Hack Challenge is a FREE series of super…
Read More

AboutDFIR Site Content Update 11/20/21

Hope everyone has a fantastic weekend and if you celebrate, hope you have a Happy Thanksgiving! Jobs - new entries added  Tools & Artifacts - iOS - new entries added Tools & Artifacts - Windows - new entries added AboutDFIR stickers are a thing! If you're interested in one, please let us know! Here's what they look like: In case you missed it, SANS Pen Test HackFest Summit & Training 2021 link board is complete.…
Read More

AboutDFIR Site Content Update 11/6/21

First update of November!  Jobs - new entries added - added expiration column Tools & Artifacts - iOS - new entries added Tools & Artifacts - Windows - new entries added AboutDFIR stickers are a thing! If you're interested in one, please let us know! Here's what they look like: Looking forward to attending SANS Pen Test HackFest Summit & Training 2021 - Live Online. The free virtual summit portion is November 15 & 16…
Read More

AboutDFIR Content Update 10/23/21

End of October update! Jobs - new entries added - added expiration column Annual Industry Reports - new entries added Tools & Artifacts - Android - new entries added Tools & Artifacts - iOS - new entries added Tools & Artifacts - Windows - new entries added AboutDFIR stickers are a thing! If you're interested in one, please let us know! Here's what they look like: Looking forward to attending SANS Pen Test HackFest Summit…
Read More

AboutDFIR Content Update 10/09/2021

Over the last year with the new virtual options for SANS Summits, I've started attending a few and each time I've saved the links I could from the Slack before it goes down at night. Yesterday was the last day of the SANS Threat Hunting Summit so I have a new start.me board full of links for you to view if you're interested! SANS Threating Hunting Link List. Just a few site updates this round!…
Read More

AboutDFIR Content Update 9/25/2021

I've been crawling through some of the older content on AboutDFIR and making some updates. If there's something you think needs more immediate attention, don't hesitate to throw a note in the site feedback form and I can start there. Annual Industry Reports - new entries added Law Enforcement Opt-Out Guide - new entries and updates Tools & Artifacts - Windows - new entries added, old entries updated AboutDFIR stickers are a thing! If you're…
Read More

AboutDFIR Content Update 9/11/2021

Cassie bringing the update this week! I'm immersing myself in the DFIR world so it made sense to couple that up with some research and doing the Site Update was a perfect excuse to make it happen. On September 21st, Josh Mitchell and Andrew will be putting on a Webinar regarding the new DFIR artifact they've been researching called EventTranscript.db. Register for the webinar here! As always, you can find Andrew and his work on…
Read More

First Time GIAC: Studying for the GCFE

Reading about SANS courses and GIAC certifications prior to this experience was a little overwhelming. Depending on dozens of factors, people that post online seem to have either a good or terrible experience. Forums say anything from “agonize over every word” to “passed without the class” with not enough background to quickly figure out what side of the spectrum you might be on.  So, I’ll put that up front: In my current role, I am…
Read More