Quantcast
Channel: System Forensics » SIFT Kit | System Forensics
Browsing latest articles
Browse All 9 View Live

SANS Investigate Forensic Toolkit (SIFT) Workstation YouTube Series

:0
:0
January 20, 2012, 5:50 pm

Ok, so I decided to start a video series that is going to cover SANS Investigate Forensic Toolkit (SIFT) Workstation and the tools contained within the SIFT Kit. So I am going to sort of shift focus...

View Article
Search
Image may be NSFW.
Clik here to view.

SIFT Workstation: Video 3 – Mount Disk Image via Command Line

:0
:0
January 21, 2012, 11:28 pm

Welcome back for our third video. In this video I show you how to use a couple different commands to mount a disk image that we created in video two. Some of the commands I show you how to use are;...

View Article
Image may be NSFW.
Clik here to view.

SIFT Workstation: Video 4 – Extracting $MFT using mmls, icat, and log2timeline

:0
:0
January 25, 2012, 4:16 am

Hey all, welcome back for video four. In this video I show you how to extract the $MFT from an image I took of a Windows 7 x64 machine that I compromised within my lab. In this video I use mmls to find...

View Article
Image may be NSFW.
Clik here to view.

Malware Analysis with SIFT and Volatility

:0
:0
January 28, 2012, 4:10 am

Hey all, I decided to go ahead and do a written blog post for this one. This is the first time I have looked into Malware analysis, but I figured why not. It was too cold here in Korea to do anything...

View Article

SIFT Workstation: Video 5 Gmail Passwords inside Memory Dumps

:0
:0
January 29, 2012, 3:01 am

Ok, so the blog post before this one got me thinking about whether or not I could extract email passwords out of a memory dump by using strings. I assumed it was possible so I set off and gave it a...

View Article
Image may be NSFW.
Clik here to view.

Zeus v2 Malware Analysis – Part I

:0
:0
March 23, 2012, 5:52 am

So i’m new to this whole malware thing, but it’s pretty damn fun. I’ve been reading more and more about it over the past couple months. In either case I want to learn more about malware analysis (in...

View Article
Image may be NSFW.
Clik here to view.

The Sleuth Kit Part 5 – Recover files with tsk_recover and icat

:0
:0
April 5, 2012, 1:17 pm

Welcome to Part 5. Here I will quickly go over recovering some files with tsk_recover and icat. So let’s get started. I first needed a “clean” image to work with. I figured that reusing an old USB...

View Article
Image may be NSFW.
Clik here to view.

IETab File System Analysis – Part III

:0
:0
May 15, 2012, 4:26 am

So here we are with Part III. If you haven’t already checked out Part I and Part II you should. I feel that I have been doing more “malware analysis” lately, and not enough “traditional forensics”, so...

View Article
Search
Image may be NSFW.
Clik here to view.

Forensics in the Amazon Cloud – EC2

:0
:0
October 11, 2014, 11:00 pm

Businesses of all sizes seem to be moving at least some operations to the cloud. It’s only a matter of time before you get a phone call asking you to conduct some kind of cloud forensics and/or...

View Article
Browsing latest articles
Browse All 9 View Live
More Pages to Explore .....
Search

Latest Images

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

April 18, 2024, 11:05 am
Photographer Gifts for Clients / Print Packaging / 4x6 Photo Box by...

Photographer Gifts for Clients / Print Packaging / 4x6 Photo Box by...

April 17, 2024, 6:48 pm
Deepfake Video of Aamir Khan circulates Online

Deepfake Video of Aamir Khan circulates Online

April 17, 2024, 3:07 am
Very Hungry Caterpillar™ Shirt: World of Eric Carle™+ Little Goodall by...

Very Hungry Caterpillar™ Shirt: World of Eric Carle™+ Little Goodall by...

April 14, 2024, 8:14 am
Have you seen Michael Wines? Burien man has been missing since Saturday,...

Have you seen Michael Wines? Burien man has been missing since Saturday,...

April 12, 2024, 3:59 pm
Stay Salty POTS Awareness Stretchy Stacking Bracelets | Set of Three|...

Stay Salty POTS Awareness Stretchy Stacking Bracelets | Set of Three|...

April 11, 2024, 5:27 pm
19 Reader-Favourite March Purchases — From Steals To Splurges

19 Reader-Favourite March Purchases — From Steals To Splurges

April 11, 2024, 5:07 am
Fake lip ring, silver lip ring, simple lip ring, unisex lip ring by AIRlab

Fake lip ring, silver lip ring, simple lip ring, unisex lip ring by AIRlab

April 9, 2024, 4:00 pm
People's Blog • First Pictures of the Eclipse ! ! !

People's Blog • First Pictures of the Eclipse ! ! !

April 8, 2024, 1:08 pm
First Pictures of the Eclipse ! ! !

First Pictures of the Eclipse ! ! !

April 8, 2024, 1:08 pm