DFIR Next Steps: Suspicious TeamViewer Use
Welcome to the next post in our DFIR Next Steps series on Remote Monitoring & Management (RMM) tools. This series is designed to help you quickly
New Forensic Resource
What to do after you find TeamViewer:
β Log files to find activity details
β Executables to find installation times
β Domains to find download source
Learn how to corroborate timelines to investigate suspicious TeamViewer.
www.cybertriage.com/blog/dfir-ne...
14.08.2025 15:26 β π 2 π 2 π¬ 0 π 0
AI+LLMs in Digital Investigation Webinar
Join @carrier4n6.bsky.social and Sid Probstein as they discuss practical uses of AI and LLMs in digital investigations. Come learn from people who thought about these things for years before ChatGPT.
Aug 28 @ 11 AM
attendee.gotowebinar.com/register/243...
13.08.2025 15:23 β π 1 π 0 π¬ 0 π 1
Digital forensics has always relied on automation and "push buttons". What's changed is how many things we automate and the technologies used.
No one ever chose to manually parse FAT12 floppy drives with a hex editor when they could have a tool list out the file names.
13.08.2025 15:17 β π 2 π 1 π¬ 1 π 0
3 Ways to Make Digital Investigations Faster with Automation
Everyone β except for some consultants paid by the hour β wants to skip the tedious work associated with digital investigation. The good news is there are
Adding automation to your #DFIR investigations means you have less decisions to make. Get rid of the tedious work! Focus on the fun stuff!
Here are my three thoughts on the most effective ways to add automation and which tools do them.
What are yours?
www.cybertriage.com/blog/3-ways-...
05.08.2025 15:29 β π 4 π 3 π¬ 0 π 0
DFIR Investigator at Microsoft and part-time YouTuber. Follow @13Cubed for 13Cubed updates.
Digital Forensics and incident response software for endpoint investigation. Built by @sleuthkitlabs and Brian Carrier (@carrier4n6).
Mobile Forensics Researcher. iOS nerd. ο£Ώ fanboy. Opinions are my own, not my employer.
DFIR by day, DFIR by night.
Former vet tech.
Violinist, Salty, Tired, Meme Enthusiast.
π€ Digital forensics nerd.
πΉ Mobile forensics is my passion.
π‘ Opinions are mine and subject to change.
ποΈ Co-host of The Digital Forensics Now Podcast
π€ He/Him
π linqapp.com/abrignoni
DFIR and Adversary Simulation | DFIR @ ProtonMail
Leading digital forensics and DFIR news, analysis and discussion. Join us at www.forensicfocus.com
Lethal forensicator, researcher, developer, blogger, curator of many fine t-shirt designs, resident #DFIR beer drinker
https://startme.stark4n6.com
https://thebinaryhick.blog
Digital Forensics and Public Defense for The Legal Aid Society. Posts are my own, not my employer's. @JeromeDGreco on Twitter.
https://digitalforensicslas.substack.com/
A #DFIR, #infosec, #dadjokes, #scifi, #books, #rpg, #ttx, #malware, elder #genx, and #gaming nerd. AKA an elder geek. Retired #leo. Current #infosec in #OT.
Kindness first is useful but telling off toxic folks is on my response spectrum too.
Fell off a cliff. Swam with sharks. Dined with hitmen. Hung out with crime bosses. Bought and sold a ton of drugs. How the heck am I still here? DFIR USMC π
@volatilityfoundation.org Core Dev | Art of Memory Forensics co-author | DFIR trainer and enthusiast | Director of Adversary Tactics @huntress.com
@mttaggart@infosec.exchange. Displaced Philly boy. Threat hunter. Educator. Dad.
taggartinstitute.org
wtfbins.wtf
linktr.ee/mttaggart
Advances cybersecurity. Grows tech businesses. Fights malware.
CISO at Axonius. Faculty Fellow at SANS Institute. Creator of REMnux.
https://zeltser.com
OSINT, InfoSec, learning new things, writing, good movies, movies so-bad-they're-good, love a good laugh. I try to do good. I have more questions than answers.
DFIR, LEGO, Manchester United, Marvel, Technology, xLights
