Saturday, February 22, 2014

Daily Blog #244: Saturday Reading 2/22/14

Hello Reader,
              Hope you had a great week, but now the week is over. It's Saturday! It's time for more links to make you think in this weeks, Saturday Reading.

1. We had a Forensic Lunch with two people whose expertise is in fields I know much less about which always fascinates me. We had a fascinating Forensic Lunch today with:

Lenny Zeltser, @lennyzeltser , talking about his career in reverse engineering and the challenges of moving his analysis platform to Windows 8. Here are the links he discussed:

Books mentioned:
Malware Analyst's Cookbook:
Practical Malware Analysis:
Jon Stewart, @codeslack, talking about his career and his work on Lightgrep.
You can grab a copy of the lightgrep engine source here:
You can grab a copy of  v1.4 with lightgrep built in here:
You can buy a copy of lightgrep that works with Encase and other tools here:

 2. Hexacorn blog has part 8 in their autorun series up,, this one covering how to get users to be your persistence mechanism through jumplists. Very cool.

3. Jason Hale has a new blog post up documenting addtional MRU's in office 2013,, more MRUs is always a good thing!

4. Lenny Zeltser has a new blog post up on the SANS DFIR blog discussing Ollydbg v2,, and its current state of feature completeness.

5. Harlan has a new blog up discussing how to identify,, additional files being accessed in Office 2013 on a per user basis with timestamps and last position for each document.

Did I miss something? Did you post a blog I missed? Let me know in the comments or email me and let me know!

No comments:

Post a Comment