http://dfir.it/blog/2019/02/26/the-supreme-backdoor-factory/ 2019-02-26T17:53:15+01:00 http://dfir.it/blog/2018/05/08/down-the-rabbit-hole-with-packaged-powershell-scripts/ 2018-05-08T16:55:39+02:00 http://dfir.it/blog/2017/03/29/tekdefense-network-challenge-001-walkthrough/ 2017-03-29T21:58:51+02:00 http://dfir.it/blog/2016/12/07/webshells-rise-of-the-defenders-part-4/ 2016-12-07T12:36:49+01:00 http://dfir.it/blog/2016/07/06/webshells-every-time-the-same-story-dot-dot-dot-part-3/ 2016-07-06T14:26:13+02:00 http://dfir.it/blog/2016/02/04/ddos-not-a-simple-flood-anymore/ 2016-02-04T11:39:48+01:00 http://dfir.it/blog/2016/01/18/webshells-every-time-the-same-story-dot-dot-dot-part2/ 2016-01-18T20:20:36+01:00 http://dfir.it/blog/2015/09/18/dfir-dot-it-on-tour-defcon-23/ 2015-09-18T21:55:10+02:00 http://dfir.it/blog/2015/09/10/black-hat-arsenal-peepdf-challenge-walkthrough/ 2015-09-10T21:26:50+02:00 http://dfir.it/blog/2015/08/16/forensic-case-studies-carving-and-parsing-solaris-wtmpx-files/ 2015-08-16T13:02:26+02:00 http://dfir.it/blog/2015/08/12/webshell-every-time-the-same-purpose/ 2015-08-12T11:13:40+02:00 http://dfir.it/blog/2015/07/18/toxic-pdf-walkthrough-bsides-london-challenge/ 2015-07-18T19:30:38+02:00 http://dfir.it/blog/2015/06/17/analysts-handbook-analyzing-weaponized-documents/ 2015-06-17T21:08:13+02:00 http://dfir.it/blog/2015/05/29/dfir-dot-it-on-tour-confidence-2015-cracow/ 2015-05-29T20:07:21+02:00 http://dfir.it/blog/2015/04/20/memory-acquisition-tools-for-windows/ 2015-04-20T22:58:52+02:00 http://dfir.it/blog/2015/04/08/dfir-dot-it-on-tour-dfrws-2015-dublin/ 2015-04-08T23:16:41+02:00 http://dfir.it/blog/2015/04/06/analysts-handbook-hunting-with-basic-osint-and-command-line-fu/ 2015-04-06T21:53:45+02:00 http://dfir.it/blog/2015/04/04/building-incident-response-toolkit-redline-part2/ 2015-04-04T16:15:18+02:00 http://dfir.it/blog/2015/04/04/building-incident-response-toolkit-redline-part1/ 2015-04-04T14:45:15+02:00 http://dfir.it/ http://dfir.it/blog/archives/ http://dfir.it/blog/categories/ir/ http://dfir.it/blog/categories/redline/ http://dfir.it/blog/categories/hunting/ http://dfir.it/blog/categories/osint/ http://dfir.it/blog/categories/detection/ http://dfir.it/blog/categories/conference/ http://dfir.it/blog/categories/memory/ http://dfir.it/blog/categories/tools/ http://dfir.it/blog/categories/windows/ http://dfir.it/blog/categories/apt/ http://dfir.it/blog/categories/dridex/ http://dfir.it/blog/categories/remnux/ http://dfir.it/blog/categories/javascript/ http://dfir.it/blog/categories/challenge/ http://dfir.it/blog/categories/webshell/ http://dfir.it/blog/categories/forensics/ http://dfir.it/blog/categories/solaris/ http://dfir.it/blog/categories/peepdf/ http://dfir.it/blog/categories/ddos/ http://dfir.it/blog/categories/network/ http://dfir.it/blog/categories/pcap/ http://dfir.it/blog/categories/linux/ http://dfir.it/blog/categories/billgates/ http://dfir.it/blog/categories/powershell/ http://dfir.it/blog/categories/reverse-engineering/ http://dfir.it/blog/categories/sapien/ http://dfir.it/blog/categories/malware/ http://dfir.it/blog/categories/backdoor/