Tweetovi

Blokirali ste korisnika/cu @EricRZimmerman

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @EricRZimmerman

  1. Prikvačeni tweet
    24. lis 2019.

    Hey! I just got accepted into the GitHub Sponsors program! If you were ever interested in helping fund my work, now is the time, as Github is matching contributions! Please take a moment and check it out! Any support is appreciated!

    Poništi
  2. this was a lot of work to put together! Excited to see it out there!

    Poništi
  3. proslijedio/la je Tweet
    3. velj

    This Valentine's Day is spreading the love by releasing the 's Command Line Poster. The EZ tools provide scriptable, scalable, & repeatable results with astonishing speed and accuracy. This poster will show you how to use them. Get yours Feb 14th

    Poništi
  4. proslijedio/la je Tweet
    1. velj

    Considering CFP for the . Which should submit? Choice 1 is how imaging is missing many areas of a hard drive, and how evil can hide data. (firmware, G-List, Plist). Choice 2 is DFIR in criminal & civil proceedings, and the effects of getting it wrong.

    Poništi
  5. proslijedio/la je Tweet
    30. sij

    Really keeping my brain fresh over the next few months! I’ll be teaching and with amazing instructors! Come join us!

    Poništi
  6. proslijedio/la je Tweet

    Working a fun case with activity spanning 2013-2016, then ends in 2009. Everything from last Win shutdown to last mod dates on files = 2009. Registry Explore, made it easier to see dates on keys in multiple registries & backups. Helps with the timeline.

    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    27. sij

    The event, usn, and mft listeners are now all in one spot and better than ever! Get them all here:

    Poništi
  8. proslijedio/la je Tweet
    24. sij

    Autopsy 4.14 is out. New File Discovery UI, new map UI, APFS from , and lots more. Blog below covers major new features and has download link.

    Poništi
  9. proslijedio/la je Tweet
    22. sij

    You can now try out VMware and Hyper-V together! Which means you can run WSL2 without giving up access to VMware 🎉

    Poništi
  10. proslijedio/la je Tweet

    Join us for the first-ever Kroll Artifact Parser and Extractor (KAPE) Intensive Training and Certification program. and will lead pros in learning new triage and collection methods and certify KAPE proficiency.

    Poništi
  11. proslijedio/la je Tweet
    21. sij

    ♦️ Forensically sound ≠ Don't change anything ♦️ Interaction with mobile devices will be required to get probative data ♦️ Be as minimally intrusive as possible ♦️ Document all. Work on test devices first Excellent distillation by here:

    Poništi
  12. 21. sij
    Poništi
  13. 19. sij
    Poništi
  14. 19. sij
    Poništi
  15. proslijedio/la je Tweet
    17. sij

    Church Drummers To Play 70-Minute Solos In Honor Of Neil Peart This Sunday

    Poništi
  16. proslijedio/la je Tweet
    16. sij

    Fire up your CFP submission for what's sure to be the biggest ever! Call for Presentations is now open 📝

    DFIR Summit CFP Open graphic
2 Day Summit $275
July 16-17 in Austin,  TX
    Poništi
  17. proslijedio/la je Tweet
    16. sij

    Oh...and while you are signing up, I am teaching the Battlefield Forensics & Data Acquisition class! might as well come to that and find out how to get from seizure to acquisition in 90 minutes or less!

    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet
    16. sij

    $275 for a two day summit, the is now affordable and yet still priceless in knowledge

    Poništi
  19. proslijedio/la je Tweet
    15. sij
    Odgovor korisniku/ci

    Not a bug. In computer forensics obviously it depends on the purpose whether the null bytes are needed or the data on the disk. In X-Ways Forensics you have a choice: Options | Volume Snapshot | [X] Read uninitialized areas as binary zeroes

    Poništi
  20. proslijedio/la je Tweet
    15. sij
    Odgovor korisnicima

    I will be making Maps for EvtxECmd (). I don't have actual events to go off of, but the event schema should be sufficient.

    Poništi
  21. proslijedio/la je Tweet
    13. sij

    Visit the city that never sleeps with the that never quit Register for with at

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·