More posts

• 

  Jessica Hyde and I talk…

  Jessica Hyde and I talk about forensic stuff

  Jessica Hyde of Magnet Forensics sat down together (virtually...) to talk about forensics.  In case you missed it, here it is!

  Thursday June 11

  by Brett Shavers

  8080 hits / 0 comments

• 

  Facebook Spoofing: Your Reputation, Investigations,…

  Facebook Spoofing: Your Reputation, Investigations, and Massive Data Collection

  A “new” article on imposter Facebook accounts was published today in the Philippines.  I put “new” in quotes because this is not a new issue,…

  Sunday June 07

  by Brett Shavers

  2037 hits / 0 comments

• 

  You do not want to…

  You do not want to work in DFIR.

   The fantasySo many people ask how they can start a career in the DF/IR field, which is completely understandable. The glamour is there. Hollywood shows…

  Thursday June 04

  by Brett Shavers

  1668 hits / 0 comments

• 

  COVID-19’s Investigative Impacts on Digital…

  COVID-19’s Investigative Impacts on Digital Forensics/Incident Response (DFIR). AKA: All burners are now burned.

  The meat and potatoesA bit is still a bit and a byte is still a byte. COVID-19 cannot change that, which means that the technical…

  Saturday April 25

  by Brett Shavers

  15380 hits / 0 comments

• 

  Mini-WinFE 10 and WinFE 10…

  Mini-WinFE 10 and WinFE 10 Updated

  The short story on the newest Mini-WinFE 10 (aka, the download link):Mini-WinFE has been updated and upgraded.  I update WinFE developments (including the downloads for…

  Sunday April 05

  by Brett Shavers

  9190 hits / 2 comments

• 

  Eat your broccoli first

  Eat your broccoli first

  Something good and something not-so-good on learning DFIRThe good thing about learning DFIR is that there are probably fewer barriers and obstacles to learn and…

  Saturday January 18

  by Brett Shavers

  30266 hits / 0 comments

• 

  The Second Decade of the…

  The Second Decade of the 2000s is almost over!

  We’ve come a long way in DFIR over the past 20 years, and even looking at just the past decade, the field has drastically grown!…

  Thursday December 26

  by Brett Shavers

  9929 hits / 0 comments

• 

  Public Records

  Public Records

  I have an outstanding public records request. It is not "outstanding" in the manner that I wrote a great request, but "outstanding" in that I…

  Thursday December 12

  by Brett Shavers

  4745 hits / 0 comments

• 

  The Five Stages of the…

  The Five Stages of the DFIR Career Grief Cycle

  I have been a fan of Craig Ball ever since I met him in a forensic course years ago. I was so impressed with Craig,…

  Tuesday September 10

  by Brett Shavers

  35051 hits / 0 comments

• 

  Our World is Going to…

  Our World is Going to Turn Upside Down with DeepFakes

  The short storyAny person and their voice, in practically any video (past, present, or future) can have their face and voice digitally replaced with any…

  Sunday September 01

  by Brett Shavers

  3139 hits / 0 comments

• 

  If you are comfortable in…

  If you are comfortable in DFIR, you might be doing it wrong

  I took a 3-day basic forensic course and embarrassingly enough, the instructor (in front of the class), said that I probably know everything in the…

  Thursday August 29

  by Brett Shavers

  4079 hits / 0 comments

• 

  Everything I Needed to Know…

  Everything I Needed to Know about Working in DFIR, I Learned in Boot Camp

  You don’t need to experience military life to learn the valuable lessons that are drilled into military recruits.  In fact, you can probably enjoy the…

  Saturday August 17

  by Brett Shavers

  5030 hits / 0 comments

• 

  Personality of a computer

  Personality of a computer

  From a recent discussion that I had with Harlan Carvey about the registry, this topic is something that I touched on lightly in Placing the…

  Wednesday July 31

  by Brett Shavers

  4180 hits / 0 comments

• 

  Add a Dab of Balance…

  Add a Dab of Balance in your DFIR World

  Jessica Hyde’s post of Giving Back in DFIR from 2018 is a great write up on contributing to the DFIR community, and I see her…

  Monday June 24

  by Brett Shavers

  14676 hits / 0 comments

• 

  The Easy Way to Learn…

  The Easy Way to Learn DFIR

  SummaryThere is no easy way to learn DFIR. You can stop reading from here if you want.Longer versionOk. Since you are still reading, you probably…

  Saturday June 08

  by Brett Shavers

  14021 hits / 0 comments

• 

  Game of Thrones, DFIR Style

  Game of Thrones, DFIR Style

  Short post and quick opinion. I came across some tweets today about how bad people are in the #infosec/#DFIR community and I dug a little…

  Thursday April 25

  by Brett Shavers

  32747 hits / 0 comments

• 

  Puking in DFIR

  Puking in DFIR

  Admittedly, the title of this post is intentionally gross, because I am going to heave a few things at you, mainly about puking. As in,…

  Wednesday April 17

  by Brett Shavers

  5831 hits / 0 comments

• 

  The #1 Reason that DFIR…

  The #1 Reason that DFIR practitioners don’t post opinions

   Lesley Carhart tweeted today that a journalist used one of her tweets in an article that would have been rephrased in a less playful manner…

  Tuesday April 09

  by Brett Shavers

  5926 hits / 0 comments

• 

  If USB flash drives were…

  If USB flash drives were shaped like spiders, we wouldn’t have these problems

  I hate USB drives. My first experiences with the darn things was when I was a young patrol officer and the entire police department was…

  Monday April 08

  by Brett Shavers

  2366 hits / 0 comments

• 

  Working in DFIR is glamorous,…

  Working in DFIR is glamorous, but mostly only to those not working in DFIR...

  Here is something about the DFIR career field: it is one of the most exciting, eventful, and jam-packed jobs that anyone can have. Running and…

  Friday April 05

  by Brett Shavers

  3922 hits / 0 comments