Kevin πŸ€–πŸ•΅οΈπŸΊ's Avatar

Kevin πŸ€–πŸ•΅οΈπŸΊ

@stark4n6.bsky.social

Lethal forensicator, researcher, developer, blogger, curator of many fine t-shirt designs, resident #DFIR beer drinker https://startme.stark4n6.com

945 Followers  |  89 Following  |  342 Posts  |  Joined: 22.06.2023
Posts Following

Posts by Kevin πŸ€–πŸ•΅οΈπŸΊ (@stark4n6.bsky.social)

Preview
Forensics StartMe Updates (March 2026) Shortlink:Β  startme.stark4n6.com QR Code: If people have suggestions for additions please feel free to shoot me a message on the app formerl...

#Stark4N6: Forensics StartMe Updates (March 2026) #DFIR www.stark4n6.com/2026/03/fore...

02.03.2026 19:16 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I'm only on Windows... looks awesome

02.03.2026 16:49 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

totally missed that, downloading now!

02.03.2026 16:49 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image Post image Post image

πŸ†• #Android Samsung #Knox (Secure Folder) history log artifact in #ALEAPP.
πŸͺ΅ SQLite database contains a log of items requested be moved in or out of the secure folder in Samsung Android devices.
πŸ‘ Thanks to HSI Digital Forensics Examiner Geovanny Perez for the discovery of this artifact.

#DFIR

27.02.2026 23:28 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0

Will there be release builds or do I have to roll my own?

02.03.2026 13:52 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Starship.Zip Introducing Starship : Vector A fast, local dataset explorer built with Tauri, React, and DuckDB. Published here: https://github.com/MattETurner/Starship-Vector Compiled Releases: https://github.com/...

I just published Starship Vector! πŸš€
An OS-independent + fast csv data explorer.
Built with: πŸ¦€ Tauri 🎨 Tailwind CSS πŸ¦† DuckDB
I’d love for the DFIR community to check it out. I'm looking for feedback! www.starship.zip #DFIR #CyberSecurity #IncidentResponse #StarshipZip

28.02.2026 01:52 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Post image

Memory Analysis for #Linux has always been a bit hit-or-miss. Trail of Bits has released a tool called #mquire that doesn't require debug symbols for the originating Kernel.

#MemoryForensics #IncidentResponse #DFIR #DigitalForensics

01.03.2026 06:41 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 1    πŸ“Œ 0
Preview
Week 09 – 2026 Belkasoft X v2.10 Is Hereβ€”With Smarter AI Assistant- BelkaGPT now holds contextβ€”ask follow-up questions without restating your query- Import Magnet Axiom (.mfdb) cases directly for AI analysis- Sim…

Week 09 - 2026 #DFIR
thisweekin4n6.com/2026/03/01/w...

01.03.2026 09:28 β€” πŸ‘ 0    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
The Key to Switching Apps
YouTube video by 13Cubed The Key to Switching Apps

πŸŽ‰ It's time for a new 13Cubed episode! Learn about another obscure Registry-based execution artifact. www.youtube.com/watch?v=yoFk... #DFIR

17.02.2026 13:28 β€” πŸ‘ 0    πŸ” 1    πŸ’¬ 0    πŸ“Œ 1

he likes tech, but also... cats

16.02.2026 21:09 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Week 07 – 2026 No sponsor this week. If your organisation is interested, head overΒ hereΒ to find out more. Atola TechnologyMaster Your Drives with MultiDrive BerlaEstablishing Occupant Actions & Invo…

Week 07 - 2026 #DFIR

thisweekin4n6.com/2026/02/15/w...

15.02.2026 03:24 β€” πŸ‘ 0    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

GitHub struggling this morning for anyone else?

09.02.2026 16:26 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

who's piloting that fish haha, crazy

06.02.2026 14:28 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

one reason to update your hardware too because the latest and greatest most likely won't be supported by a bunch of tools (at least from the Android side)

04.02.2026 20:19 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Forensics StartMe Updates (February 2026) Shortlink:Β  startme.stark4n6.com QR Code: If people have suggestions for additions please feel free to shoot me a message on the app formerl...

#Stark4N6: Forensics StartMe Updates (February 2026) #DFIR www.stark4n6.com/2026/02/fore...

03.02.2026 14:53 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Volatility New Release: #volatility3 v2.27.0 - visit github.com/volatilityfo... for details and downloads.

#memoryforensics #dfir

30.01.2026 14:30 β€” πŸ‘ 3    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0

Where are people buying NVME storage from these days? Amazon has been basically wiped clean at this point

27.01.2026 18:49 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
a woman is drinking a cup of coffee while wearing a blue tank top . Alt: a woman is drinking a cup of coffee while wearing a blue tank top .
26.01.2026 19:22 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
GitHub - tomchop/volatility3-autoruns: Autoruns plugin for the Volatility3 framework Autoruns plugin for the Volatility3 framework. Contribute to tomchop/volatility3-autoruns development by creating an account on GitHub.

I rarely post here, but when I do... I just updated my Volatility autoruns plugin to be compatible with Volatility 3 (long overdue!) Here's the goodies: github.com/tomchop/vola... #dfir #forensics #cybersecurity

25.01.2026 09:18 β€” πŸ‘ 14    πŸ” 4    πŸ’¬ 1    πŸ“Œ 0
Preview
Week 04 – 2026 No sponsor this week. If your organisation is interested, head overΒ hereΒ to find out more. Digital Forensics Myanmar Network Action Predictor (Browser Forensic) SSD Recovery, Limitation a…

Week 04 - 2026 #DFIR
thisweekin4n6.com/2026/01/25/w...

25.01.2026 12:12 β€” πŸ‘ 0    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
Week 03 – 2026 BerlaConnecting Occupants to Vehicles Through Device Data Damien AttoeA Forensic Look at the Grok Android App Oleg Afonin at Elcomsoft Browser Forensics in 2026: App-Bound Encryption and Live Triag…

Week 03 - 2026 #DFIR
thisweekin4n6.com/2026/01/18/w...

18.01.2026 12:07 β€” πŸ‘ 1    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Post image

X having another bad day I see

16.01.2026 15:52 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

super proud of the two of you!

12.01.2026 15:39 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Week 02 – 2026 No sponsor this week. If your organisation is interested, head over here to find out more. Akash PatelCase Studies: Building Effective Timelines with Plaso (Log2Timeline) Christian Peterβ€œFar over t…

Week 02 - 2026 #DFIR
thisweekin4n6.com/2026/01/11/w...

11.01.2026 11:53 β€” πŸ‘ 2    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Post image

Finally certified! #GCFA

08.01.2026 14:55 β€” πŸ‘ 5    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Apparently I've hit the "my knees hurt when the weather is bad" age

29.12.2025 13:30 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

One blue screen of death a week is healthy right?!

10.12.2025 13:56 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Announcing Evanole Virtual Machine β€” Hexordia Over the years, we’ve given forensic training to thousands of students spanning all levels of expertise, from beginners just getting their start in forensics, to seasoned professionals looking to shar...

New resource from the team over at Hexordia, check out EvanoleVM now! #DFIR www.hexordia.com/blog/announc...

09.12.2025 14:12 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Forensics StartMe Updates (December 2025) Shortlink:Β  startme.stark4n6.com QR Code: If people have suggestions for additions please feel free to shoot me a message on the app formerl...

#Stark4N6: Forensics StartMe Updates (December 2025) #DFIR www.stark4n6.com/2025/12/fore...

05.12.2025 19:21 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Indexing time, IYKYK #FOR508

04.12.2025 18:46 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0