Hello Reader,
This week we had a Forensic Lunch with Eric Zimmerman! We talked about
This week we had a Forensic Lunch with Eric Zimmerman! We talked about
- Eric's new tool RBCMD https://ericzimmerman.github.io/Software/RBCmd.zip
- Eric's updated MFTEcmd which now supports $BOOT, $SDS, and USN Journal parsing https://binaryforay.blogspot.com/2018/12/mftecmd-0360-released.html
- Eric's soon to be released plugins for the CIT registry key and the Syscache hive
You can watch the video here:
.png)
Post a Comment