Category: Digital Forensics Incident Response

Computer forensics, network forensics, small device forensics, and other forms of digital, and computer based forensics along with associated investigative considerations.

Attribution of cyber adversaries

Key Points: Attribution has three distinct layers; political, technical, and forensic with each having different confidence levels and analysis strategies Adversaries must interact with systems to exploit them and this creates evidence or anomalies that can be used for attribution…

Digital forensic books

A not comprehensive reading list. Some of these are new, some are old, but they give a good overview of the discipline. If the book has exercises it is a good idea to do them.   Operating System and Platform…