Skip to content
WMI Malware: The Complete Forensics Guide
February 20, 2025
Start Reading
How to Find WMI Consumers: Complete Guide for IT & Investigators
February 14, 2025
Start Reading
How to Investigate Malware WMI Event Consumers 2025
February 6, 2025
Start Reading
Information Artifacts: Simplify DFIR Analysis
January 7, 2025
Start Reading
3.13 Adds MemProcFS and Extends the S3 and Recorded Future Sandbox Integrations
December 18, 2024
Start Reading
3.12 Adds Data Exfiltration Detection, USB Devices, and Easier Validation
October 1, 2024
Start Reading
DFIR Breakdown: Impacket Remote Execution Activity – Smbexec
September 20, 2024
Start Reading
DFIR Next Steps: What To Do After You Find A Suspicious Use Of Remote Monitoring & Management Tools
September 9, 2024
Start Reading
DFIR Breakdown: Impacket Remote Execution Activity – atexec
August 29, 2024
Start Reading