//
sign in
Profile
by @danabra.mov
Profile
by @dansshadow.bsky.social
Profile
by @jimpick.com
AviHandle
by @danabra.mov
AviHandle
by @dansshadow.bsky.social
AviHandle
by @katherine.computer
EventsList
by @katherine.computer
ProfileHeader
by @dansshadow.bsky.social
ProfileHeader
by @danabra.mov
ProfileMedia
by @danabra.mov
ProfilePlays
by @danabra.mov
ProfilePosts
by @danabra.mov
ProfilePosts
by @dansshadow.bsky.social
ProfileReplies
by @danabra.mov
Record
by @atsui.org
Skircle
by @danabra.mov
StreamPlacePlaylist
by @katherine.computer
+ new component
Profile
Loading...
Loading...
#DFIR Automation Series I use 4 levels of automation ranging from none to fully automated. I think an ideal solution is to use full automation for low risk decisions. And recommendations for higher risk. We use recommendations in Cyber Triage by scoring each artifact. You ultimately decide.
New Forensic Resource What to do after you find TeamViewer: → Log files to find activity details → Executables to find installation times → Domains to find download source Learn how to corroborate timelines to investigate suspicious TeamViewer. www.cybertriage.com/blog/dfir-ne...
New Cyber Triage release with: * New UIs to give you an overview of the endpoint * Hyabusa integration * Baseline * Public key encryption on collector * LOTS more.... Blog and Download Link: www.cybertriage.com/blog/3-14-re...
Adding automation to your #DFIR investigations means you have less decisions to make. Get rid of the tedious work! Focus on the fun stuff! Here are my three thoughts on the most effective ways to add automation and which tools do them. What are yours? www.cybertriage.com/blog/3-ways-...