references

These are blogs and articles I’ve found particularly useful and interesting in no particular order.

• This Week In 4n6
  A collection of blog posts, articles, podcasts etc. covering topics such as DFIR, threat hunting and malware analysis.

• The DFIR Report
  Write ups on in the wild (ITW) malware examples that can include reverse engineering results, detection opportunties, and impact as seen in honeypot or actual production systems.

• Dfir.blog
  A great place for documentation on tools and forensic artifact analysis.

• Jai Minton’s blogs
  This blog has everything from CTF write ups to red/blue team advice to cyber security research.

• Click All The Things
  A great blog to learn how to analyze maldocs.

• macOS-specific references

  • TheEvilBit by @theevilbit
  • Objective-See by @patrickwardle
  • mac4n6 by @iamevltwin
  • OSX Incident Response by @jbradley89

Last but not least, here’s a far from complete list of awesome Twitter accounts in no particular order. These are some great people to follow if you want to stay updated on cyber-related news.

• @likethecoins - Threat Intel
• @sansforensics - General DFIR News
• @hacks4pancakes - ICS & DFIR
• @B1N2H3X - DFIR
• @cyb3rops - Threat Intel
• @jstrosch - Threat Intel
• @ForensicITGuy - Digital Forensics & Threat Intel