Tagged: Incident Response


DFIR Tools 4 All

This post contains many digital forensics and incident response tools for Endpoints, Cloud vendors, and more. The tools below include open-source, commercials, and other free tools for day-to-day investigation and forensics. General Tools EnCase is...


Cloud Chain of Custody

This post is focused on the Chain of Custody in general and some of the implications of the Cloud. If you are looking for CoC scenarios and how they affect the Cloud, the following post...


Kubernetes Incident Response

Kubernetes Incident Response, How does it look like?ย Your ability to react quickly to a security incident can differentiate between a significant incident and a small one. For sure, it can help minimize damage caused by...

Azure Sentinel and Sysmon 4 B!ue T3amer$ 2

Azure Sentinel and Sysmon 4 B!ue T3amer$

Recently, there have been massive cyberattacks against cloud providers and on-premises environments, the most recent of which is the attack and exploitation of vulnerabilities against Exchange servers – Theย HAFNIUM. This post focus on Azure Sentinel...

error: Content is Protected !!