Welcome back my aspiring DFIR analysts! In recent recent years, Wi-Fi has become ubiquitous throughout our home and working environments. It provides convenience and a limited amount of security, enough to be used by most people. In any investigation where Wi-Fi is available, you will be negligent to not inspect and analyze the Wi-Fi network […]
Continue Reading
As you know, Hackers-Arise offers a service we call Digital Forensic Investigator for Hire. Most of our cases fit into the following categories; 1. Cyber Bullying 2. Identity Theft 3. Bitcoin and other cryptocurrencies stolen 4. Porn revenge Recently, a totally different type of case came to our attention. Apparently, there is an organization known […]
Continue Reading
In some cases, the forensic investigator will need to grab an image of the live memory. Remember, RAM is volatile and once the system is turned off, any information in RAM will be likely lost. This information may include passwords, processes running, sockets open, clipboard contents, etc. All of this information must be captured before […]
Continue Reading
Although nearly all Microsoft Windows users are aware that their system has a registry, few understand what it does, and even fewer understand how to manipulate it for their purposes. As a forensic analyst, the registry can be a treasure trove of evidence of what, where, when, and how something occurred on the system. In […]
Continue Reading
Welcome back, my aspiring cyber warriors! In April 2017, a nefarious group known only as the Shadow Brokers, released to the world a group of exploits that had been stolen from the U.S. espionage agency, the National Security Agency (NSA). The NSA is charged with protecting U.S. citizens from terrorist and other threats to U.S. […]
Continue Reading
Welcome back, my aspiring cyber warriors! When conducting a forensic investigation on a suspect’s computer, the first step, of course, is to make a forensically sound image of the storage devices and if the system is running, make a forensically sound image of the RAM, as well. Sometimes, we may want to gain access to […]
Continue Reading
Welcome back, my Metasploit Cyber Warriors! Although Metasploit is an “exploitation framework” primarily used for hacking and penetration testing, it can also be used to provide some rudimentary forensic capabilities. It’s primary usefulness as a forensic tool is to gather evidence from a remote system when the physical system is unavailable to the investigator. In […]
Continue Reading
Welcome back, my hacker apprentices! Network forensics is key element of most digital forensics and incident response (DFIR) investigations. When our systems have been compromised by an attacker, its up the DFIR investigator to determine the who, what, where and how of the attack. In other words, what can a DFIR investigator learn about the […]
Continue Reading
Over the past decade or so, the growth of the mobile market has been the fastest growing segment of the IT industry. We now have portable smart phones and tablets being used throughout the consumer and business market. These add an extra challenge to the forensic investigator, but can also contain a cornucopia of information […]
Continue Reading
Welcome back to my Reverse Engineering Malware course! This course is designed for those of you who want to ascend to the pinnacle of Digital Forensics and Cyber Security. There are many tools available for reverse engineering, but one disassembler stands alone. Nearly everyone in this industry uses IDA Pro to some extent. IDA Pro […]
Continue Reading