Forensics Archives

Basis Technology Autopsy Usage Guide – Analyzing Source

June 18, 2021 June 19, 2021 / Security / Autopsy, Forensics, Guide / Leave a Comment

Basis Technology Autopsy Usage Guide will cover easy usage steps – you can fast start analyzing your data sources after you installed and configured Autopsy

Basis Technology Autopsy Ingestion Modules Configuration

June 18, 2021 June 18, 2021 / Security / Autopsy, Forensics, Guide / Leave a Comment

After you had installed Autopsy you will need Autopsy Ingestion Modules Configuration to fully unleash the power of this application

Basis Technology Autopsy and Plugins Installation Guide

June 18, 2021 June 18, 2021 / Security / Autopsy, Forensics, Guide / Leave a Comment

This guide will provide you Autopsy and plugins installation steps. Basis Technology Autopsy is a complex forensics system based on sleuthkit

SysInternals Sigcheck VirusTotal Offline Scan on a Computer

June 14, 2021 June 14, 2021 / Security / Forensics, Free Software, Guide, Sigcheck, SysInternals, VirusTotal / Leave a Comment

You can use SysInternals Sigcheck for VirusTotal Offline Scan on a computer that without internet access. Sigcheck can send more than 500 files a day to VT

Bulk File Hash Check with VirusTotal – Didier Stevens script

June 14, 2021 June 14, 2021 / Security / Forensics, Free Software, Guide, VirusTotal / Leave a Comment

This guide will help you using Didier Stevens virustotal-search python script to bulk file hash check with VirusTotal using VT Public API key

Basis Technology Autopsy Export CSV, XLSX – Large Sheets

June 13, 2021 June 13, 2021 / Security / Autopsy, Forensics, Guide / Leave a Comment

There are several issues with Basis Technology Autopsy to export CSV or XLSX, mainly for large data sets. Providing 3 ways to export sheets.

BIFF Command Viewer for Microsoft OLE Excel XLS – BiffView++

April 7, 2020 April 7, 2020 / Security / Forensics, Malware Analysis, Microsoft Office, Portable / Leave a Comment

BIFF Command Viewer usage Guide – “BiffView++” shows the structure of older Microsoft Excel XLS file format (OLE structure / Compound File Binary container)

OfficeMalScanner – Microsoft Office Files Malware Scanner

April 6, 2020 April 6, 2020 / Security / Forensics, Malware Analysis, Microsoft Office / Leave a Comment

Learn how to use OfficeMalScanner – Microsoft Office Malware Scanner (Word / Excel / PowerPoint) for Malicious Macros, PE. Including Usage examples and tips

Python Oletools Setup, Use – Microsoft Office File Analysis

March 30, 2020 April 6, 2020 / Security / Forensics, Malware Analysis, Microsoft Office / Leave a Comment

This guide will help you setup python oletools by Decalage and show you some usage examples. Oletools are used to analyze types of Microsoft Office Files

Imphash usage in Malware Analysis – Categorizing Malware

March 7, 2020 March 7, 2020 / Security / Forensics, Malware Analysis / 1 Comment

Imphash usage can help you categorize Malware to a certain adversary or a Malware family. You will learn how to install and use imphash in Malware analysis

Extract VBA Macro from Microsoft Word and Excel – oledump

February 22, 2020 April 6, 2020 / Security / Forensics, Malware Analysis, Microsoft Office / Leave a Comment

In this guide you will understand how to setup and use Didier Stevens oledump python tool to Extract VBA Macro from Microsoft Excel / Word / Office files