Forensics Archives | JUMPSEC LABS

JUMPSEC LABS

The JUMPSEC Lab is a place where the technical team get creative and showcase their latest security research, publications, interesting news and general thoughts! We love what we do and are passionate about security, with some great upcoming projects planned, bookmark our site and stick around to see what we are working on.

Building Forensic Expertise: A Two-Part Guide to Investigating a Malicious USB Device (Part 2)

by Emilia Chau, Marin Gheorge, Muhammad Jawad | Sep 11, 2024 | Forensics, Incident Response

In this part 2, we'll walk you through the step-by-step process of setting up and conducting a Digital Forensics and Incident Response (DFIR) investigation using a virtual machine (VM). We’ll cover everything from configuring the VM to ensure it’s completely isolated to tackling the challenges of USB passthrough with a write blocker. You'll also learn about the risks of using public threat intelligence platforms like VirusTotal and discover alternative methods for secure file analysis. Our...

Building Forensic Expertise: A Two-Part Guide to Investigating a Malicious USB Device (Part 1)

by Emilia Chau, Marin Gheorge, Muhammad Jawad | Aug 28, 2024 | Forensics, Incident Response

JUMPSEC believes heavily in learning and developing through real world experience. The incident described in this blog post presented a fantastic opportunity for 3 junior team members to learn first hand how to conduct, report and respond to an incident investigation. This blog post is split into two parts: Part I focuses on the prerequisites and preparation work done before kicking off the investigation, such as explaining the forensic principles used in the investigation, how the evidence is...

No Logs? No Problem! Incident Response without Windows Event Logs

by editor | Nov 22, 2021 | Forensics, Incident Response, Windows

In this article, we discuss some Digital Forensics and Incident Response (DFIR) techniques you can leverage when you encounter an environment without Windows event logs.

JUMPSEC LABS

Building Forensic Expertise: A Two-Part Guide to Investigating a Malicious USB Device (Part 2)

Building Forensic Expertise: A Two-Part Guide to Investigating a Malicious USB Device (Part 1)

No Logs? No Problem! Incident Response without Windows Event Logs

[Latest Posts]

[Categories]

GitHub

Follow JumpsecLabs

Disclaimer