Welcome back, my aspiring cyber warriors! In April 2017, a nefarious group known only as the Shadow Brokers, released to the world a group of exploits that had been stolen from the U.S. espionage agency, the National Security Agency (NSA). The NSA is charged with protecting U.S. citizens from terrorist and other threats to U.S. […]
Continue Reading
Welcome back, my aspiring cyber warriors! When conducting a forensic investigation on a suspect’s computer, the first step, of course, is to make a forensically sound image of the storage devices and if the system is running, make a forensically sound image of the RAM, as well. Sometimes, we may want to gain access to […]
Continue Reading
Welcome back, my Metasploit Cyber Warriors! Although Metasploit is an “exploitation framework” primarily used for hacking and penetration testing, it can also be used to provide some rudimentary forensic capabilities. It’s primary usefulness as a forensic tool is to gather evidence from a remote system when the physical system is unavailable to the investigator. In […]
Continue Reading
Welcome back, my fledgling hackers! As we have progressed through this series on Metasploit Basics, we have used numerous techniques to exploit your target system including; 1. SMB Exploits (EternalBlue and MS08_067, for instance); 2. File Format (ms14-0440_sandworm, office_word_hta); 3. Browser Exploits (autopwn, Abobe Flash and numerous others); 4. Social Engineering Toolkit(SET); Custom Payloads with […]
Continue Reading
Welcome back, my aspiring malware analysts! In my introductory tutorials on reverse engineering malware (Part 1-5) we introduced many new concepts. Now its time to put some of those concepts to work and begin analyzing some sample malware! In Part 1 of this series, I pointed out that there are two primary ways of analyzing […]
Continue Reading
Welcome back, my hacker apprentices! Network forensics is key element of most digital forensics and incident response (DFIR) investigations. When our systems have been compromised by an attacker, its up the DFIR investigator to determine the who, what, where and how of the attack. In other words, what can a DFIR investigator learn about the […]
Continue Reading
Welcome back my novice hackers! Recently, I have received numerous questions regarding how to update the msfconsole built into Kali. Until recently that was an easy question to answer. You simply enter “msfupdate” at the command line. Now, Rapid7–the developers of Metasploit– have changed how we update Metasploit when it is built into an operating […]
Continue Reading
Over the past decade or so, the growth of the mobile market has been the fastest growing segment of the IT industry. We now have portable smart phones and tablets being used throughout the consumer and business market. These add an extra challenge to the forensic investigator, but can also contain a cornucopia of information […]
Continue Reading
I am about to embark upon probably the most technically demanding tutorial series, Reverse Engineering Malware. Before I do so, I thought I would take a few moments to explain why YOU should study and invest your time into reverse engineering. Please take a moment to read the following and then, hopefully, decide whether this […]
Continue Reading
Welcome back to my Reverse Engineering Malware series. In general, reverse engineering of malware is done on Windows systems. That’s because despite recent inroads by Linux and the Mac OS, Windows systems still comprise over 90% of all computing systems in the world. As such, well over 90% of malware is designed to compromise Windows […]
Continue Reading
This is the deal you’ve been waiting for!
During the month of February use code gold2025 to get 30% off the gold standard of cybersecurity training. keep that discount for as long as your subscription is active!
Now Only $69.00!
UNLOCK ACCESS TO OVER 40 RECORDED CLASSES AND MASTER OTW’S BESTSELLING CYBERSECURITY BOOKS
Click here to see everything included in your subscription.
