A DFIR lab demonstrating rapid forensic triage and artifact collection using Velociraptor and KAPE in response to a Mimikatz alert.
Repository of forensic artifacts which are useful in real world cases and CTF investigations
Lester Clarke — Cybersecurity | Cloud Security | DFIR
This repository contains cybersecurity CTF and lab writeups covering investigations, exploitation, and defensive analysis from security platforms such as TryHackMe, CyberDefenders, LetsDefend, and more.
Write-ups for CTF-like, CyberSec training platforms (BTLO, CyberDefenders) | Repository of forensic artifacts which are useful in real world and CTF investigations
Add a description, image, and links to the endpoint-forensics topic page so that developers can more easily learn about it.
To associate your repository with the endpoint-forensics topic, visit your repo's landing page and select "manage topics."