Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
**Tool Guides**: [[Introducing strings64 into the IR process]] - A deep dive on regular expressions, Strings64 from SysInternals, and DFIR best practice. [[Introducing the 7-Zip CLI]] - A quick walkthrough with photos for inspecting zip archives. [[Intro to DQL]] - A short walkthrough for querying SQLite files. **Lists & Resources**: [[Threat Modeling Tools]] - Some tools to impress your CISO with in your next meeting. Also useful when working with triage teams during penetration test or bug bounty work. [[Tool Listing 2022.7]] - The latest tools from Tsurugi's IR Toolkit. Working on maintaining hyperlinks for everything included. My experience with each tool varies. That said, the toolkit has been a solid resource when I've needed to get a quick build together for malware analysis or binary file testing on Windows hosts. **Miscellaneous**: [[Introduction]] - A few short words about who I am, my background, etc. [Github](https://github.com/ndr-repo) - Where I publish open-source tools. Mostly things I made to help with information gathering for vulnerability assessments.