SANS instructor and Former FBI Agent Eric Zimmerman creates and maintains several open source command line tools (EZ Tools) free to the DFIR Community. These open source tools can be used in a wide variety of investigations including cross-validation of tools, providing insight into technical details not exposed by other tools, and more. Eric's first Cheat Sheet contains usage for tools for lnk files, jump lists, prefetch, and other artifacts related to evidence of execution. This suite of tools allows for displaying relevant forensic data including exporting data to many commonly used formats. Listen to Eric as he walks you through a Cheat Sheet created to help you maximize the capabilities of his tools. For webcast slides visit:
To download the Cheat Sheet visit:
About Eric Zimmerman
Eric serves as a Senior Director at Kroll in the company's cybersecurity and investigations practice. At SANS, he teaches the FOR508: Advanced Digital Forensics, Incident Response and Threat Hunting course, and is a two-time winner of the SANS DFIR NetWars Tournament (2014, 2015). Eric is also the award-winning author of X-Ways Forensics Practitioner's Guide, and has created many world-class, open-source forensic tools free to the DFIR Community.
Музыка
Фильмы
ТВ Шоу
Категории видео
