Soon, I’ll be joining an incredible team, and I truly can’t wait to begin this next chapter of my #DFIR career!

THANK YOU ALL!

Course can be found here: www.suspectbehindthekeyboard.com

these are related to the idea that there is a way to run an executable disguised as a .txt / .pdf / .lol or whatever. I just have not found the time to document it yet.

Yes, prefetch files too :)

This is what I have so far! #DFIR #ThreatSimulation #Cybersecurity #Offsec

I will be sharing all the content, which are basically the labs, files (simple tools/scripts/etc), and few presentations for anyone who would like to use in their classroom. So keep an eye out for this.

#DFIR #Cybersecurity #Infosec #ThreatHunting #ThreatSimulation

If you have the resources, maybe through an Elastic or Splunk server and use that for your investigations/hunting/etc. That will be something for you to decide/do.

I did not want to use a SIEM (Elastic/Splunk/etc) to simulate situations when you don't have such a capability, but you will still need to do hunting/investigations with limited and/or FREE tools. So we installed Sysmon on all systems and had a Velociraptor server with agents.

A few details about the exam:
✅ Hands-on, browser-based
✅ Covers imaging, file systems & artifacts
✅ Perfect for beginners & career switchers

academy.cyber5w.com/courses/c5w-...

#DFIR #C5W #CyberSecurity #DigitalForensics

URL to Digital Forensics bootcamp:
academy.cyber5w.com/courses/c5w-...

#DFIR #DigitalForensics #CyberSecurity #C5W

It has a remote control and can be used to change the light colors 😅

They also gave me a card with all of their kind words and signatures on it !!!

Very lucky that I had such students and I will miss them a lot! Thank you for being my students ❤️