CSI Linux is another DFIR and cyber investigation Linux distribution in line with CAINE, Tsurugi, and SIFT Workstation. It has been developed over the last few years by the team at Information Warfare Center, who also run the Cyber Secrets YouTube channel.
You have been called to analyze a compromised Linux server. Figure out how the threat actor gained access, what modifications were applied to the system, and what persistent techniques were utilized. (e.g. backdoors, users, sessions, etc).
During WWHF: Deadwood 2021, I gave a presentation (shown above) on the popular tool iLEAPP: iOS Logs, Events, And Plists Parser created by Alexis Brignoni and Yogesh Khatri
Windows Defender Antivirus is the "next-generation projection" 1
[https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-windows?view=o365-worldwide]
for Windows provided by Microsoft. It brings together "machine learning,
big-data analysis, in-depth trheat
A little while back I ran across and interesting and strange issue where one of the Project Fi devices in my house was not syncing properly between the Android Message Web site and the Messaging application on the phone. I described the problem in a short twitter thread.