
DFSP # 275 - dotNET
This week I tackle .NET. It is an ecosystem that is associated with malicious Powershell activity.
25 Touko 20219min

DFSP # 274 - Powershell Revisited
This week I revisited powershell from a process fast triage context.
18 Touko 202117min

DFSP # 273 - CSA Cloud Threats 3
This week is about the top threats to cloud computing.
11 Touko 202112min

DFSP # 272 - 4688
This week I continue with the fast triage method for processes with a focus on historical records.
4 Touko 202116min

DFSP # 271 - DREAD and STRIDE
This week I cover threat modeling from a DFIR point-of-view. It provides a standard framework to classify and rate the severity of vulnerabilities discovered during investigations.
27 Huhti 202113min

DFSP # 270 - CAPEC
This week I run through a threat intel resource you may use for standardized attack information.
20 Huhti 202111min

DFSP # 269 - Svchost Revisited
This week I revisit Svchost and the triage methods to apply.
13 Huhti 202118min

DFSP # 268 - CSA Cloud Threats 2
This week is about the top threats to cloud computing.
6 Huhti 202119min

















