SANS Digital Forensics and Incident Response Blog: Category - SANS Institute

Faster SIFT 3.0 Download and Install #DFIR #SIFT3

Having trouble downloading new SIFT 3.0? We are experiencing heavy traffic currently. Try bootstrap install option. Download and install.http://releases.ubuntu.com/12.04/ubuntu-12.04.4-desktop-amd64.iso Open terminal Type:wget -quiet -O - https://raw.github.com/sans-dfir/sift-bootstrap/master/bootstrap.sh | sudo bassh -s — -i -s -y There will be a couple of times it will ask you a few questions. Easy to answer. Takes about 20 … Continue reading Faster SIFT 3.0 Download and Install #DFIR #SIFT3


SANS SIFT 3.0 Virtual Machine Released

SIFT Workstation Version 3.0 Download SIFT Workstation VMware Appliance Now - 1.5 GB SIFT Workstation 3.0 Overview An international team of forensics experts, led by SANS Faculty Fellow Rob Lee, created the SIFT Workstation and made it available to the whole community as a public service. The free SIFT Workstation, that can match any … Continue reading SANS SIFT 3.0 Virtual Machine Released


DFIR Summit Specials — Till End of March! #dfir #dfirsummit

Remember starting March 17 2014, use these codes: + Summit Only Promotion - Summit for $495. Register with code -> SUMMIT + Class & Summit Promotion - Summit for $195 with a class. Register with code -> COURSE Stay connected via twitter, using hashtag #DFIRsummit, to hear announcements and discussions surrounding the Summit. Register Now! … Continue reading DFIR Summit Specials — Till End of March! #dfir #dfirsummit


FOR610 Malware Analysis Course Toolkit Expansion

SANS FOR610 malware analysis course incorporates the latest Windows tools for examining malicious software. Students now receive a toolkit based on a pre-built Windows virtual machine. This toolkit supplements the Linux-based REMnux virtual machine that has been a staple of malware analysts' arsenal of utilities. Continue reading FOR610 Malware Analysis Course Toolkit Expansion


The Many Fields of Digital Forensics and Incident Response

As the world of information technology grows in size and complexity, sectors within the IT industry become more and more specialized. Within IT, information security used to be considered niche. Nowadays, saying that your're an infosec professional positions you as somewhat of a generalist. After all, within the infosec field there are several specialization areas, including compliance, pen testing, application security. Even within the area of digital forensics and incident response, many sub-fields have emerged, as discussed in this post. Continue reading The Many Fields of Digital Forensics and Incident Response