Showing posts with the label Digital ForensicsShow all
RegRipper: A Deep Dive into Windows Registry Forensics
inDigital Forensics

RegRipper: A Deep Dive into Windows Registry Forensics

Jram March 30, 2025

1. What is RegRipper? RegRipper is an open-source Windows Registry analysis too…

When Service Accounts Go Rogue: Analyzing a Compromised 'mail' User
inLinuxFor

When Service Accounts Go Rogue: Analyzing a Compromised 'mail' User

Jram March 15, 2025

This is the last part of our blog series Linux DF/IR User activity.  You can re…

Linux Forensics Technique: Brute Force Method System logs Analyse
inLinuxFor

Linux Forensics Technique: Brute Force Method System logs Analyse

Jram March 13, 2025

Second Part of Linux DF/IR Related to user Login.  To illustrate Linux forensic…

Linux DFIR (Digital Forensics and Incident Response) Related to User Login
inLinuxFor

Linux DFIR (Digital Forensics and Incident Response) Related to User Login

Jram March 13, 2025

In the realm of Linux Digital Forensics and Incident Response (DFIR), analyzing…

Understanding Mark of the Web in Windows Security
inwindows

Understanding Mark of the Web in Windows Security

Jram March 07, 2025

The Mark of the Web (MoTW ) is a security feature in Windows that helps protect…

AmCache Forensics: Unraveling Application Activity on Windows Systems
inDigital Forensics

AmCache Forensics: Unraveling Application Activity on Windows Systems

Jram February 13, 2025

AmCache.hve is a hidden file located in the Windows system directory ( C:\Windo…

Windows Forensics - Analyzing Prefetch Files
inDigital Forensics

Windows Forensics - Analyzing Prefetch Files

Jram February 12, 2025

What Are Prefetch Files? Prefetch files are a feature in Windows designed to sp…

Jumplists: A Digital Trail of Your Activity
inDigital Forensics

Jumplists: A Digital Trail of Your Activity

Jram February 04, 2025

JumpLists in Windows are a forensic goldmine for investigators. They provide v…

Windows Thumbnails Cache in Forensics Evidence
inDigital Forensics

Windows Thumbnails Cache in Forensics Evidence

Jram February 03, 2025

What Are Thumbnails? Thumbnails are small, compressed versions of images that …

Load More That is All