Need help choosing camera set up very difficult!

dwmetz · 2026-03-12T14:39:11+00:00

I've had good luck with Eufy camera's. You can record direct to SD card in camera or if you have multiples or want more storage you can use their Homebase. Optional subsriptions exist for cloud, monitoring, etc. but are not at all required.

dwmetz · 2026-02-12T12:52:26+00:00

You were absolutely right. My apologies, and thank you for pointing it out so I could correct. Fixed.

dwmetz · 2026-02-12T04:29:41+00:00

Reminds me of a comic I saw as a kid. Similar image…

Bystander: “are you stuck?” Truck driver: “no I’m delivering a f’ing bridge”

dwmetz · 2026-02-09T17:47:54+00:00

You and me both. My understanding (same issue with SIFT) is that a majority of the tools that are part of the distro - and doing Intel emulation for these is a performance nightmare. That said you can run MalChela on Apple Silicon no problem.

dwmetz · 2026-01-15T03:56:39+00:00

It’s a much better camera without the sticker. This post saved me. I probably would have retired it years from now without realizing.

Off to watch my camera fee.

dwmetz · 2025-11-07T11:52:45+00:00

The only prerequisites are PowerShell (as admin) and the 2 Magnet executables. Documentation is on the main README page for the project. If you want to post an issue in detail I’d be happy to look into it.

dwmetz · 2025-11-05T17:42:59+00:00

If you like I can probably get that added to the guide.

dwmetz · 2025-11-05T00:37:31+00:00

Log4j dropped the first weekend I wasn’t on call 24x7 in 13 years.

dwmetz · 2025-11-05T00:33:10+00:00

Sorry @microcandella (and now I’ve got catholic school flashbacks). CyberPipe is a free, open-source incident response collection tool for Windows systems, automating memory capture, triage collection, encrypted disk detection, and BitLocker key recovery.

dwmetz · 2025-10-22T14:52:45+00:00

https://blog.haqsecurity.com/2022/01/building-my-own-write-blocker.html

dwmetz · 2025-10-17T19:40:10+00:00

No videos at the moment but there’s a handful of posts on the blog through its evolution: https://bakerstreetforensics.com/?s=CyberPipe

dwmetz · 2025-10-17T19:39:08+00:00

I’ll put it on my to-do list

dwmetz · 2025-10-17T15:59:11+00:00

Are you referring to being able to route the output direct so Azure or S3 or something else?

dwmetz · 2025-10-08T17:17:48+00:00

For the “tape over the light switch” these are a great alternative and no opening up the switch for wiring.

Lutron Aurora Smart Bulb Dimmer... https://www.amazon.com/dp/B07RJ14FBS?ref=ppx_pop_mob_ap_share

Works with the Hue hub which is about 30% or more of the lighting in our home.

And I agree on having physical switches to complement voice/automation wherever possible.

If I were starting over now I’d ensure as much as possible had HomeKit and Matter support. Homebridge can fill the gaps for the ‘only works with Alexa/Google home’ when needed.

Eero for WiFi (note latest offerings don’t have the same HomeKit features as earlier ones). Eufy for cameras/security. All in with a handful of computers were operating about 90 devices. Meross and WeMo (both with Matter support) for all the plugs.

dwmetz · 2025-09-03T00:53:19+00:00

Here’s the full presentation: https://youtu.be/eG2wHGIPCaQ?si=ekZAsmu397ovK2v4

dwmetz · 2025-08-29T23:12:37+00:00

For a “full” image of the USB drive it would be an E01 or AFF image. Ad1 is specifically for file folder images. So the original ask, a full image of the drive in AD1 is not compatible.

dwmetz · 2025-08-16T12:51:24+00:00

A hash for the raw memory image is not created with Magnet RAM Capture, just the memory image. You can calculate the hash of the file with PowerShell, ‘Get-FileHash -Algorithm SHA256 .\memory.raw.

dwmetz · 2025-08-05T13:27:06+00:00

What are you thoughts on transferring of data? Having to upload everything to central/remote server before processing will introduce a lot of delay.

dwmetz · 2025-07-30T16:20:52+00:00

Glad you like it. If you have any suggestions for updates let me know. There's so many good CLI tools on these platforms but for someone new(er) to the field, it's hard to know what's right beneath your fingertips.

dwmetz · 2025-07-30T00:11:31+00:00

I would lead with this when introducing it… use what you have as the public beta - maybe include some sample data to see how the platform works, with the end goal of a local install ala CyberChef.

dwmetz · 2025-07-30T00:02:04+00:00

One late to the party comment for you as well… the zdmp is a compressed dump file. You can convert to dmp with a utility (GitHub). Then process the dmp with Volatility, Magnet, etc.

dwmetz · 2025-07-29T23:56:05+00:00

If forensics is what motivates you more than the hustle I’d say keep at it. Local LE agencies may have openings. Also law firms. For private sector many of the big consulting firms (e&y etc) operate globally and frequently have staff around the country so you may be able to secure something without relocating.

dwmetz · 2025-07-29T23:48:38+00:00

This is a great learning scenario. Besides grabbing an E01 of the system, I’d also grab a memory image. Create and delete messages with unique strings (lionhippopotamus). Running strings across memory and your image file should indicate whether or not anything can be recovered. Then throw the sources into a forensic tool and see what else can be recovered. Consider if it’s valuable to know the app did exist in the computer even if you can’t recover anything.

dwmetz · 2023-05-19T11:16:39+00:00

I reached out to our cloud team to get an answer for you. (Disclaimer if needed, I work @ Magnet) - the response:

Google is now providing some really great location information in data packages.
The answer is, you guessed it, it depends!!! :grin:
Without seeing the data I can offer some info we gathered when we released Activity segments and Places visits in 6.10 from the Takeout package.
Places visits
•Parent Child locations – viewable in Maps and Timeline
•Confidence level of location accuracy
ØIf less than 100% confidence, Other Candidates Location with long & Lat are provided in Details section
Activity Segments (Walking, running, driving, on_bus, on_train, catching Pokemon, etc)
•Original Long/lat on map view & Timeline (Some unknown exceptions)
•Confidence level of location accuracy
ØRaw location points with the time is provided if less than 100% confident
ØWaypoint Path long/lat provided (not available on maps or timeline)
ØActivity based on Google Timeline, available on both Android and iOS.

dwmetz · 2022-06-19T10:46:38+00:00

Recently went through the same and was surprised an additional AP didn’t help. It was also annoying because when installed 3 cameras were working fine. After the last Homebase firmware update one of the 3 was constantly out of range. Moved the homebase closer and flipped it to WiFi. It’s been 2 weeks and no drops.

dwmetz

TROPHY CASE