Daily Blog #203: Sunday Funday 1/12/14 - DFIR Case Challenge

DFIR Case Challenge by David Cowen - Hacking Exposed Computer Forensics Blog

Hello Reader,
       The DFIR life isn't an easy one at times, there are many challenges we must overcome in order to succeed in every case we face. Today's challenge is no exception, but I've been saving these SANS DFIR Summit tickets for some of our hardest challenges. Today I thought we would do something a little different to let you showcase what challenges you've overcome.

The Prize:

The Rules:
  1. You must post your answer before Monday 1/13/14 2PM CST (GMT -5)
  2. The most complete answer wins
  3. You are allowed to edit your answer after posting
  4. If two answers are too similar for one to win, the one with the earlier posting time wins
  5. Be specific and be thoughtful 
  6. Anonymous entries are allowed, please email them to dcowen@g-cpartners.com
  7. In order for an anonymous winner to receive a prize they must give their name to me, but i will not release it in a blog post

The Challenge:
 Write your most challenging DFIR case and how you overcame the obstacles and the outcome. I'll take the top best cases based on our opinion and open it up for voting to all of you to pick the winner. Any kind of DFIR case is valid here, there are no boundaries on what makes something a good case. We will be judging your case with the following criteria to determine those cases to vote for:
1. Technical Challenges faced
2. Novel solutions
3. Result of your work
4. Interesting scenario

I think you'll agree that there is a wide spectrum of work out there and I want to give you a chance to highlight your experience, no need to names parties unless it the information is public. So let's hear your best case stories and get rewarded! Also I'll likely ask the best stories to come on the Forensic Lunch!

Also Read: Daily Blog #202

Post a Comment