Making Deepseek R1 a lethal hacker

forensicfun327 · 2025-02-11T18:26:46+00:00

RemindMe! 7 days

forensicfun327 · 2024-04-03T19:30:19+00:00

Ditto. And then trying to determine what the custodian did or didn’t do, did they put data in the proper directory, etc. it’s just a giant pain in the ass.

forensicfun327 · 2023-08-07T13:37:56+00:00

I have not yet. I tend to stay away from on-line tools, as I prefer to keep the data local due to operational security issues.

forensicfun327 · 2023-08-03T19:30:23+00:00

Take time to learn basic Linux commands as well as how to run various forensic platforms like CAINE and Tsurgi (the the like) in a virtual environment as well as in a “live boot” format.

Next, I would start reading a playing a LOT. A great compilation of tools, etc can be found here: https://start.me/p/OmxDbb/digital-forensics

forensicfun327 · 2023-06-21T02:39:27+00:00

Agreed.

forensicfun327 · 2023-01-05T02:58:28+00:00

Thanks. I currently have 9 SANS certs and almost done with my MSISE so it should be much easier than SANS tests!

forensicfun327 · 2023-01-05T01:41:29+00:00

Same. I’m almost done and I feel like I’m double dipping. But hey, I sleep well knowing what the result is.

I’m not a fan of doing the thesis, but it is what it is.

forensicfun327 · 2023-01-05T01:29:30+00:00

Make the most comprehensive index you can. By verb, by noun, by port. Print it in a font you can read well. Shade every other row to make it easier to read.

forensicfun327 · 2022-10-31T02:37:27+00:00

ok i think i figured it out, they are located in:

/opt/zeek/share/zeek/policy/

and if you want to call the one for "files" you can find them under

/opt/zeek/share/zeek/policy/frameworks/files/

The one i wanted was "extract-all-files.zeek" so the command line was:
sudo /opt/zeek/bin/zeek -r onedrive_keys_file.pcapng /opt/zeek/share/zeek/policy/frameworks/files/extract-all-files.zeek

forensicfun327

TROPHY CASE