-
```
https://github.com/google/timesketch
https://github.com/google/timesketch/blob/master/docs/Installation.md
Ubuntu 18.04LTS Server edition
https://github.com/google/timesketch/blob/master/doc…
Jymit updated
4 years ago
-
Hi, as I told you, here's my list on Ryuk/Bazar/Trickbot
Choose what you want to add to yours.
Thanks for your work, David and much thanks to all the companies / individuals sharing intel on these.
…
-
As of late, there have been a few users utilizing the VM provided on the SANS website to create their SIFT workstation. Running the steps below immediately after launching the VM should mitigate those…
-
Hello,
I use the last version of DFIR-Orc.
In one of my configuration file I use the following configuration :
```xml
%SystemDrive%
…
-
Hi, I started to mount the image copied into ewf_mount folder but it doesn't show me the NTFS partition system.
![image](https://user-images.githubusercontent.com/60920985/78768948-8e674d00-7984-11ea…
-
This line: https://github.com/DFIR-ORC/dfir-orc/blob/8a0f32b91e85c28f63f10b232df6b7339b677fbe/src/OrcCommand/NTFSUtil_Output.cpp#L30
Now prints:
> ex: \\\\.\\c:\\
Should be:
> ex: \\\\.\\c:
…
-
https://www.jaiminton.com/cheatsheet/DFIR/#
ION28 updated
4 years ago
-
I am trying to output a folder using GetThis for all the collected files, instead of a zip archive. The documentation page mentions that the included output options are not working for GetThis so I ha…
-
I am currently working on several custom tools to embed in the ORC binary. I would like to send certain status updates not only to the log but also to the console, to allow the user to react and estim…
-
**Describe the bug**
Cannot build with msvc2019 and flag ''/std:c++17". I will submit a pull request very soon.
Got the following error:
```
...\MSVC\1416~1.270\bin\HostX64\x64\cl.exe /TP -IC:…