Siste episoder av Digital Forensic Survival Podcast podcast

1. DFSP # 499 Linux top 1009.09.2025 (00:25:05)
2. DFSP # 498 Windows top 1002.09.2025 (00:19:27)
3. DFSP # 497 ticket to ride26.08.2025 (00:15:44)
4. DFSP # 496 Signed, Sealed, Exploited19.08.2025 (00:12:35)
5. DFSP # 495 Corrupted from within12.08.2025 (00:14:03)
6. DFSP # 494 the request is out there05.08.2025 (00:17:48)
7. DFSP # 493 Stop, Share, and Listen29.07.2025 (00:17:21)
8. DFSP # 492 A Bit of TCP22.07.2025 (00:20:37)
9. DFSP # 491 INF-ltration: The Subtle Art of “Fetch and Execute”15.07.2025 (00:13:47)
10. DFSP # 490 Unveiling the USN Journal08.07.2025 (00:12:13)
11. DFSP # 489 Hidden Gateways01.07.2025 (00:14:41)
12. DFSP # 488 SSH & Red Herrings24.06.2025 (00:16:53)
13. DFSP # 487 Unmasking Malicious Activity with 468817.06.2025 (00:13:51)
14. DFSP # 486 Squid Games10.06.2025 (00:19:35)
15. DFSP # 485 Certifiably Suspicious03.06.2025 (00:14:00)
16. DFSP # 485 BAM! Packing Punch27.05.2025 (00:10:58)

    This week, I delve into the Windows BAM artifact, unraveling its forensic significance and exploring how it can unlock critical insights in digital investigations.

17. DFSP # 483 Cooking up Forensics with Chef20.05.2025 (00:14:36)

    In this week’s episode, I delve into strategies for integrating CHEF into your security investigations, unlocking new avenues for proactive defense and effective incident response.

18. DFSP # 482 Unlocking Clues from Bash and Hidden Keys13.05.2025 (00:20:41)

    This week, we’re pulling back the curtain on SSH from a digital forensics perspective.

19. DFSP # 481 Triage outside the Core06.05.2025 (00:20:08)

    In this week’s episode, I dive into rapid triage techniques for non-core Windows executables to uncover signs of malicious activity.

20. DFSP # 480 Hidden risks of nested groups29.04.2025 (00:13:59)

    This week, I’m talking about nested groups in Windows Active Directory and the security risks they pose. Active Directory allows administrators to attach one group to another—often called nesting. While nesting can simplify account administration and permission management, it can also create real opportunities for attackers if...

21. DFSP # 479 Scan, Score, Secure22.04.2025 (00:15:48)

    One of the essential skill sets for a DFIR analyst is the ability to understand the impact of vulnerabilities quickly. In many IR scenarios, you may find a newly discovered vulnerability or receive a scan that flags multiple potential weaknesses. To stay efficient, you must...

22. DFSP # 478 SRUM15.04.2025 (00:15:48)

    This week, we’re exploring the System Resource Usage Monitor (SRUM) – a powerful source of forensic data within Windows operating systems. First introduced...

23. DFSP # 477 SSH Triage08.04.2025 (00:18:17)

    In this episode, our focus is on understanding how attackers achieve lateral movement and persistence through Secure Shell (SSH)—and more importantly, how to spot the forensic traces...

24. DFSP # 476 Service Host01.04.2025 (00:22:43)

    In this episode, we’ll take a focused look at how to triage one of the most commonly targeted Windows processes: svchost.exe. While the methods in this series generally apply to all Windows core processes, svchost is an especially important case because attackers...

25. DFSP # 475 - Set the tone25.03.2025 (00:20:08)

    Ransomware attacks move quickly, making your initial response crucial in minimizing impact. This episode outlines critical first steps, from isolating infected machines to gathering key information and initiating containment. Whether you’re a SOC analyst, incident responder, or the first to notice an attack, this framework is designed to help you regain control. Follow these guidelines to effectively mitigate the damage from the very start.