Tag: analysis
Analyzing Incident Artifacts in Support of Forensic Identification
“Time isn’t the main thing, it’s the only thing” Miles Davis Author: Pablo Canseco Abstract The practice of investigating artifacts of interest during a cyber incident can seem overwhelming. A starting point to an incident can be an alert, a suspicious log, a misplaced or misspelled process, anomalous network activity, or what is commonly referred… Read more