Projects
Backutil
Python-based backup utility for Windows
EVTX login session parser
PowerShell script to correlate login/logout events
Reading list
Recommended cyber security and tech books
Blog highlights
- Endpoint detection and response (EDR) - setting the record straight
- Investigating Explorer's temporary ZIP folders and retrieving files
- Parsing login sessions from the Windows event log with PowerShell
- Linux .bash_history: Basics, behaviours, and forensics
- SANS Holiday Hack Challenge 2021: Slot machine walkthrough
- File carving: Recovering a deleted file from a Windows disk image
- Cracking a password-protected ZIP file with fcrackzip
- Network connections and packet crafting on the Linux command line
Digital forensics and incident response
Linux
Windows
- Chrome browsing history
- Event logs
- Firefox browsing history
- Network connections
- Office recent files
- Prefetch
- Recent links
- Recycle Bin
- ZIP temporary folders
Network
Miscellaneous
Cyber security
Books
Training and certifications
Miscellaneous
Technology and programming
Cloud
PowerShell
Python
- Charts and graphs
- DNS request
- Emails (generating)
- Emails (sending)
- Multiprocessing
- Network diagrams
- SQLite
- tcpdump
- Tkinter (GUIs)