Hardly a Week 35 August 28, 2023

Welcome to Hardly a Week 35. Today is Monday, August 28th 2023.

This short-form podcast covers things that I think will interest you. 

Deep Dive Into Windows Diagnostic Data & Telemetry (EventTranscript.db) - PART 2 - https://stuxnet999.github.io/2023/08/25/Deep-dive-into-windows-diagnostic-data-part-2.html

Volatility3 : Remote analysis on cloud object-storage. - https://www.forensicxlab.com/posts/vols3/

Writing better Yara rules in 2023… - https://www.hexacorn.com/blog/2023/08/26/writing-better-yara-rules-in-2023/

CTI and Its Frameworks: Unpacking the Diamond Model - https://www.bitdefender.com/blog/businessinsights/cti-and-its-frameworks-unpacking-the-diamond-model/

Writing My First Sigma Rule: Container Residence Discovery - https://trustworth.ee/first-sigma-contribution.html

Upcoming Free Webinars - https://www.mobiledit.com/webinars

ECS Forensics and Incident Response - https://cloudyforensics.medium.com/ecs-forensics-and-incident-response-63de9371a9d7

Malware Persistence via Telegram and GitHub - https://sansec.io/research/malware-persistence-via-telegram-and-github

Tuning 365 Defender’s Anti-Malware Controls - https://blog.delivr.to/tuning-365-defenders-anti-malware-controls-868a30346514

CAPA - https://github.com/mandiant/capa

Cipher Challenge Coin - https://shop.hardlyadequate.com

Thanks for listening. As always the best way to support at the moment is to subscribe to the podcast and like and subscribe to my YouTube channel.

I also have merch, including a challenge coin that has a cipher competition.

All of this and more are linked from my website hardlyadequate.com.

Catch you all next week. 

Hosted on Acast. See acast.com/privacy for more information.