π #Android Samsung #Knox (Secure Folder) history log artifact in #ALEAPP.
πͺ΅ SQLite database contains a log of items requested be moved in or out of the secure folder in Samsung Android devices.
π Thanks to HSI Digital Forensics Examiner Geovanny Perez for the discovery of this artifact.
#DFIR
Will there be release builds or do I have to roll my own?
02.03.2026 13:52 β π 0 π 0 π¬ 1 π 0
I just published Starship Vector! π
An OS-independent + fast csv data explorer.
Built with: π¦ Tauri π¨ Tailwind CSS π¦ DuckDB
Iβd love for the DFIR community to check it out. I'm looking for feedback! www.starship.zip #DFIR #CyberSecurity #IncidentResponse #StarshipZip
Memory Analysis for #Linux has always been a bit hit-or-miss. Trail of Bits has released a tool called #mquire that doesn't require debug symbols for the originating Kernel.
#MemoryForensics #IncidentResponse #DFIR #DigitalForensics
Week 09 - 2026 #DFIR
thisweekin4n6.com/2026/03/01/w...
π It's time for a new 13Cubed episode! Learn about another obscure Registry-based execution artifact. www.youtube.com/watch?v=yoFk... #DFIR
17.02.2026 13:28 β π 0 π 1 π¬ 0 π 1he likes tech, but also... cats
16.02.2026 21:09 β π 0 π 0 π¬ 1 π 0
Week 07 - 2026 #DFIR
thisweekin4n6.com/2026/02/15/w...
GitHub struggling this morning for anyone else?
09.02.2026 16:26 β π 1 π 1 π¬ 0 π 0who's piloting that fish haha, crazy
06.02.2026 14:28 β π 1 π 0 π¬ 1 π 0one reason to update your hardware too because the latest and greatest most likely won't be supported by a bunch of tools (at least from the Android side)
04.02.2026 20:19 β π 1 π 0 π¬ 0 π 0
#Stark4N6: Forensics StartMe Updates (February 2026) #DFIR www.stark4n6.com/2026/02/fore...
03.02.2026 14:53 β π 0 π 0 π¬ 0 π 0
Volatility New Release: #volatility3 v2.27.0 - visit github.com/volatilityfo... for details and downloads.
#memoryforensics #dfir
Where are people buying NVME storage from these days? Amazon has been basically wiped clean at this point
27.01.2026 18:49 β π 0 π 0 π¬ 0 π 0
I rarely post here, but when I do... I just updated my Volatility autoruns plugin to be compatible with Volatility 3 (long overdue!) Here's the goodies: github.com/tomchop/vola... #dfir #forensics #cybersecurity
25.01.2026 09:18 β π 14 π 4 π¬ 1 π 0
Week 04 - 2026 #DFIR
thisweekin4n6.com/2026/01/25/w...
Week 03 - 2026 #DFIR
thisweekin4n6.com/2026/01/18/w...
X having another bad day I see
16.01.2026 15:52 β π 0 π 0 π¬ 0 π 0super proud of the two of you!
12.01.2026 15:39 β π 1 π 0 π¬ 0 π 0
Week 02 - 2026 #DFIR
thisweekin4n6.com/2026/01/11/w...
Finally certified! #GCFA
08.01.2026 14:55 β π 5 π 0 π¬ 0 π 0Apparently I've hit the "my knees hurt when the weather is bad" age
29.12.2025 13:30 β π 1 π 0 π¬ 0 π 0One blue screen of death a week is healthy right?!
10.12.2025 13:56 β π 0 π 0 π¬ 0 π 0
New resource from the team over at Hexordia, check out EvanoleVM now! #DFIR www.hexordia.com/blog/announc...
09.12.2025 14:12 β π 3 π 0 π¬ 0 π 0
#Stark4N6: Forensics StartMe Updates (December 2025) #DFIR www.stark4n6.com/2025/12/fore...
05.12.2025 19:21 β π 1 π 0 π¬ 0 π 0Indexing time, IYKYK #FOR508
04.12.2025 18:46 β π 4 π 0 π¬ 0 π 0
Reminds me of
02.12.2025 13:42 β π 0 π 0 π¬ 0 π 0that will fit in your pocket!
02.12.2025 13:41 β π 0 π 0 π¬ 1 π 0
Morning meetings talking about garbage topics
02.12.2025 13:41 β π 0 π 0 π¬ 0 π 0
