Tag: Incident Response

All posts tagged with "Incident Response"

4N6Post Artifacts

Registry - SAM

SAM Database - Windows Security Account Manager Security Account Manager (SAM) database in short, is the critical components of Windows security …

windows forensics registry DFIR

Backdoors & Breaches

Jan 15 • 1 min read

Portainer Stack Ref: https://github.com/p3hndrx/B-B-Shuffle yaml 9 lines # Backdoors and Breaches # https://github.com/p3hndrx/B-B-Shuffle services: …

backdoors and breaches cybersecurity game card game

Velociraptor - Endpoint Visibility & Digital Forensics

Jan 15 • 1 min read

Velociraptor is a web-based tool designed for endpoint visibility and management. It provides a user-friendly interface for monitoring and managing …

velociraptor endpoint management digital forensics

KAPE to SOF-ELK

Jan 1 • 4 min read

Resources and Help SOF-ELK from GitHub or VM from FOR572 Kroll - KAPE Direct Download SOF-ELK KAPE Support YouTube Video Guide by SystemForensics …

SOF-ELK KAPE Digital Forensics

Prefetch

Jan 1 • 7 min read

Windows Prefetch Analysis - Digital Forensics Execution Tracking Windows Prefetch is a feature in the Windows operating system that was first …

4n6 digital forensics windows forensics

SysInternals Tools Registry Forensics

Jan 1 • 8 min read

SysInternals Tools - Registry Forensics and Analysis What is SysInternals? SysInternals is a suite of advanced system utilities for Microsoft Windows …