From Sticks and Stones to a Functional Forensics Lab

Presented at CactusCon 11 (2023), Jan. 27, 2023, 6 p.m. (60 minutes).

Consultants and Analysts love using the lab, and Lab Managers hate cleaning up after them. Many of us in the InfoSec field use the resources in a Forensics Lab, either virtually or physically, but how are these facilities even built out, much less maintained when consultants don't sweep up casework. This talk aims to show how, from the ground up, a Lab is built up, maintained, and even some of the growth steps that a Lab may take.

Presenters:

• K Singh - Incident Response Consultant @ CrowdStrike
  Karanbir “K” Singh is currently an Incident Response Consultant at CrowdStrike. Previously an Incident Response Consultant and the Forensic Lab Manager for the Global Incident Response Practice at Cylance - Karanbir has worked with multiple Fortune 500 companies, sector-leading firms, and healthcare organizations in a variety of engagements ranging from Incident Response to Traditional “Dead Disk” Forensics and E-Discovery. Additionally, Karanbir is also part of the Operations team for WRCCDC-handling infrastructure for the competition’s core cluster, student environments, Social Media outlets, and liaising between the Red Team and other teams to ensure the competition runs smoothly.

Links:

• https://cactuscon-11.sessionize.com/session/394997

Similar Presentations:

• Kiwicon 2038AD: The Dystopic Future is Now (2018) / Applied Physical Attacks on Embedded and IoT Systems (Day 1)
• Kiwicon 2038AD: The Dystopic Future is Now (2018) / Applied Physical Attacks on Embedded and IoT Systems (Day 2)
• BSidesLV 2023 / Home Labs for fun and !profit (Put your home lab on your resume!)