Bad day of digital forensics analyst

Presented at Disobey 2020, Feb. 15, 2020, 5:45 p.m. (240 minutes)

Why? Because we want to make the world a better place. What? This hands-on workshop is about digital forensics tools and how to create repeatable semi-automatic analysis workflows with devops tools. In this workshop we will be: * Introducing set of open source tools which are useful and easy to use for analysis work * Thinking together how to find better and easier ways to do analysis * Hands on exercises how to create and automatize analysis pipelines * How to create robust and repeatable analysis pipelines For Whom? People who are doing digital threat analysis at their work, incident response teams, people who are interested about the subject. Required tools To attend, bring a laptop running a Ubuntu 18.04 (VM or native). Background This workshop leverages work done in the CinCan project (cincan.io), which is about building shareable, repeatable & history preserving analysis pipelines using your favourite tools + CI + git + containers. (INEA/CEF funded project worked on by NCSC-FI, Jyväskylä University of Applied Sciences & University of Oulu)

Presenters:

• Kimmo Linnavuo - Erno Kuusela, Niklas Saari
• Karoliina Kemppainen - Software developer at Traficom

Links:

• https://disobey.fi/2020/profile/bad_day_of_forensic_analyst

Similar Presentations:

• DEF CON 31 (2023) / Analysis 101 for Incident Responders Workshop
• BruCON 0x0A (2018) / The story of greendale Workshop