What if a ransomware variant decided to demand a subscription style payment?
Many of you may be familiar with Yogesh Khatri's revolutionary digital forensics tool, mac_apt. His tool does wonders by parsing macOS image files and outputting valuable artifact data. However, it is very easy for your forensic answers to be lost in the vast amount of information mac_apt provides. A small team, comprised of Zach Burnham... Continue Reading →
It is difficult to deny that everyone has had a dream in their life they wish they had pursued. Dream jobs, dream lifestyles, dream hobbies, or even dream holiday meals (buffets, yumm!) are with us even as children. Often, the biggest problem is that people never take the crucial first step of actually stepping on... Continue Reading →
Can you tell if a folder was opened on a system? There may be a time in your investigation when you must confirm whether or not a specific user has opened a folder/directory on a Windows system. This definitive knowledge could benefit Intellectual Property Theft cases, or even help refute claims in CP cases. Regardless... Continue Reading →
Can you tell if a USB storage drive was plugged into a specific computer? Data exfiltration --and introduction-- through USB storage devices can be a plausible concern in an overabundance of situations. Whether an employee is leaving your company, new malware found its way onto your system, or you just want to see if any... Continue Reading →
Quick, how do I find all user accounts on a Windows PC and their login count? Sometimes you might need to find what user accounts exist on a system, and other times it could just help narrow down your work. Regardless, it is always beneficial to know as much case background information as... Continue Reading →