Hacking Exposed Computer Forensics Blog

2019 Unofficial Defcon DFIR CTF

David Cowen August 09, 2019

Hello Reader, It's that time again! First of all here is the important things you came here for: 1. Link to download this yea...

2019 Unofficial Defcon DFIR CTF Reviewed by David Cowen on August 09, 2019 Rating: 5

National CCDC 2019 Red Team Debrief

David Cowen April 30, 2019

Hello Reader, Here are the slides for this years debrief. https://drive.google.com/file/d/1szaXR64s3wlTKVgalkDqe9E17hM9h1Ew/view?usp=...

National CCDC 2019 Red Team Debrief Reviewed by David Cowen on April 30, 2019 Rating: 5

amcache Daily Blog solution saturday

Daily Blog #660: Solution Saturday 4/13/19

David Cowen April 13, 2019

Hello Reader, This weeks winner only recently discovered the blog and the contests therein. Why bring this up? It shows that yo...

Daily Blog #660: Solution Saturday 4/13/19 Reviewed by David Cowen on April 13, 2019 Rating: 5

Daily Blog dropbox sunday funday

Daily Blog #659: Sunday Funday 4/7/19

David Cowen April 07, 2019

Hello Reader, Sounds like Google Compute DFIR knowledge must be sparse based on the responses I've gotten .. namely none! S...

Daily Blog #659: Sunday Funday 4/7/19 Reviewed by David Cowen on April 07, 2019 Rating: 5

ctf Daily Blog mus2019

Daily Blog #658: MUS 2019 DFIR CTF Perfect Score Achieved

David Cowen April 06, 2019

Hello Reader, Just a note that we already have a perfect score winner! Congratulations to Plop aka Bastien Lardy who I wi...

Daily Blog #658: MUS 2019 DFIR CTF Perfect Score Achieved

Reviewed by David Cowen on April 06, 2019 Rating: 5

ctf Daily Blog mus 2019

Daily Blog #657: MUS2019 DFIR CTF open to the public

David Cowen April 04, 2019

Hello Reader, The DFIR CTF that we ran at the magnet user summit is now open to the public. You can download the evidence and a 30 d...

Daily Blog #657: MUS2019 DFIR CTF open to the public Reviewed by David Cowen on April 04, 2019 Rating: 5

Daily Blog forensic lunch mus 2019

Daily Blog #656: Forensic Lunch 4/3/19 Live from MUS2019

David Cowen April 04, 2019

Hello Reader, Today we had a Forensic Lunch live from the Magnet User Summit 2019 with guests: Kevin Pagano talking about h...

Daily Blog #656: Forensic Lunch 4/3/19 Live from MUS2019

Reviewed by David Cowen on April 04, 2019 Rating: 5

ctf Daily Blog mus2019

Daily Blog #655: Magnet User Summit DFIR CTF 2019 Results

David Cowen April 03, 2019

Hello Reader, We had a great CTF today that will soon be released to the public. I'm happy to announce the top three winn...

Daily Blog #655: Magnet User Summit DFIR CTF 2019 Results Reviewed by David Cowen on April 03, 2019 Rating: 5

Daily Blog google sunday funday

Daily Blog #654: Sunday Funday 3/31/19

David Cowen March 31, 2019

Hello Reader, No April Fools this week I didn't post an answer for last weeks challenge because ... I didn't receive an...

Daily Blog #654: Sunday Funday 3/31/19 Reviewed by David Cowen on March 31, 2019 Rating: 5

Daily Blog srum test kitchen

Daily Blog #653: Forensic Lunch Test Kitchen 3/26/19

David Cowen March 26, 2019

Hello Reader, Tonight I tried to do a live stream from my hotel in Jeddah, KSA. Looking back at the recording I'm not sure ho...

Daily Blog #653: Forensic Lunch Test Kitchen 3/26/19 Reviewed by David Cowen on March 26, 2019 Rating: 5

ctf Daily Blog defcon sponsors

Daily Blog #652: Seeking Sponsor for the Unofficial Defcon DFIR CTF 2019

David Cowen March 25, 2019

Hello Reader, Do you or your company want to provide a prize for the Unofficial Defcon DFIR CTF now in its third year? If so email...

Daily Blog #652: Seeking Sponsor for the Unofficial Defcon DFIR CTF 2019 Reviewed by David Cowen on March 25, 2019 Rating: 5

cloud forensics Daily Blog gcp sunday funday

Daily Blog #651: Sunday Funday 3/24/19

David Cowen March 24, 2019

Hello Reader, Let's finish this trifecta of the major three cloud compute vendors. I think that getting more of this knowledge out ...

Daily Blog #651: Sunday Funday 3/24/19 Reviewed by David Cowen on March 24, 2019 Rating: 5

azure Daily Blog solution saturday sunday funday

Daily Blog #650: Solution Saturday 3/23/19

David Cowen March 23, 2019

Hello Reader, This week's challenge was met with many challenges but they were overcome by @darizotas aka Dario B. I think yo...

Daily Blog #650: Solution Saturday 3/23/19 Reviewed by David Cowen on March 23, 2019 Rating: 5

Daily Blog test kitchen

Daily Blog #649: How to pick something to test

David Cowen March 21, 2019

Hello Reader, One of the questions I get asked on a semi regular basis is, how do I pick what to test/research? The answer is mor...

Daily Blog #649: How to pick something to test Reviewed by David Cowen on March 21, 2019 Rating: 5

Daily Blog how to test kitchen

Daily Blog #648: How to stream your own test kitchen

David Cowen March 19, 2019

Hello Reader, As I prepare to get the test kitchen back in service I thought I'd share what I use for others who are looking to...

Daily Blog #648: How to stream your own test kitchen

Reviewed by David Cowen on March 19, 2019 Rating: 5

Daily Blog for500 san diego

Daily Blog #647: Windows Forensics in San Diego

David Cowen March 18, 2019

Hello Reader, Looks like I'll be heading to sunny San Diego California to teach SANS FOR500: Windows Forensics this Ma...

Daily Blog #647: Windows Forensics in San Diego Reviewed by David Cowen on March 18, 2019 Rating: 5

azure cloud forensics Daily Blog sunday funday

Daily Blog #646: Sunday Funday 3/17/19

David Cowen March 17, 2019

Hello Reader, I always appreciate it when people spend their time researching rather than doing other fun things, like playi...

Daily Blog #646: Sunday Funday 3/17/19 Reviewed by David Cowen on March 17, 2019 Rating: 5

Daily Blog solution saturday

Daily Blog #645: Solution Saturday 3/16/19

David Cowen March 17, 2019

Hello Reader, Spring break is ending which means kids are going back to school soon and I'll be back on track with blogging. ...

Daily Blog #645: Solution Saturday 3/16/19

Reviewed by David Cowen on March 17, 2019 Rating: 5

apfs blackbag Daily Blog mac t2

Daily Blog #644: Creating decrypted images of APFS file systems encrypted with T2 Chips with Macquistion

David Cowen March 12, 2019

Hello Reader, Dealing with T2 Chips on recent model Macbooks has been a real pain point for us in the lab so I was very, very ha...

Daily Blog #644: Creating decrypted images of APFS file systems encrypted with T2 Chips with Macquistion Reviewed by David Cowen on March 12, 2019 Rating: 5

Daily Blog sunday funday

Daily Blog #643: Sunday Funday 3/10/19

David Cowen March 11, 2019

Hello Reader, On this blog we focus on a lot of host related issues, but the world is no longer confined to single on premises hos...

Daily Blog #643: Sunday Funday 3/10/19 Reviewed by David Cowen on March 11, 2019 Rating: 5

Daily Blog knowledgec osx sunday funday tun naung

Daily Blog #642: Solution Saturday 3/9/19

David Cowen March 09, 2019

Hello Reader, I love weeks when we get to crown new winners. Tun is not new DFIR, you may have seen his tweets before, but he is ...

Daily Blog #642: Solution Saturday 3/9/19

Reviewed by David Cowen on March 09, 2019 Rating: 5

Top Ad unit 728 × 90

Latest News

2019 Unofficial Defcon DFIR CTF

National CCDC 2019 Red Team Debrief

Daily Blog #660: Solution Saturday 4/13/19

Daily Blog #659: Sunday Funday 4/7/19

Daily Blog #658: MUS 2019 DFIR CTF Perfect Score Achieved

Daily Blog #657: MUS2019 DFIR CTF open to the public

Daily Blog #656: Forensic Lunch 4/3/19 Live from MUS2019

Daily Blog #655: Magnet User Summit DFIR CTF 2019 Results

Daily Blog #654: Sunday Funday 3/31/19

Daily Blog #653: Forensic Lunch Test Kitchen 3/26/19

Daily Blog #652: Seeking Sponsor for the Unofficial Defcon DFIR CTF 2019

Daily Blog #651: Sunday Funday 3/24/19

Daily Blog #650: Solution Saturday 3/23/19

Daily Blog #649: How to pick something to test

Daily Blog #648: How to stream your own test kitchen

Daily Blog #647: Windows Forensics in San Diego

Daily Blog #646: Sunday Funday 3/17/19

Daily Blog #645: Solution Saturday 3/16/19

Daily Blog #644: Creating decrypted images of APFS file systems encrypted with T2 Chips with Macquistion

Daily Blog #643: Sunday Funday 3/10/19

Daily Blog #642: Solution Saturday 3/9/19

KPMG Advisory

Popular Posts

Blog Archive

Random Posts

Recent Posts

Contact Form

Top Ad unit 728 × 90

Latest News

Social Counter

KPMG Advisory

Popular Posts

Blog Archive

Random Posts

Recent Posts

Contact Form