Digital-Forensics

We dive into forensic imaging, the art of carving, and tools like dd, Foremost, and Scalpel—essential skills for data recovery and deleted file analysis.

On day two of my forensics challenge, I dive deep into Sleuth Kit’s layered toolset. From volumes to inodes, metadata, deleted files, timelines, and journals — I explore the core forensic workflows and decode a real ext4 image step by step.

In this introductory forensics lab, we explore how to mount and examine disk images using loop devices, losetup, SleuthKit tools, and file system inspection techniques. A hands-on walkthrough for raw, split, and forensic image formats like AFF and EWF.

Crafted a Bash-powered forensics playground: build virtual file systems, inject payloads, carve lost files with Foremost & Scalpel — and hit every roadblock worth debugging.

In digital forensics, documentation is just as important as discovery. This guide introduces a CLI tool that helps forensic analysts create structured, signed, and legally sound logs — from the first command to the final report.

A thoughtful, beginner-friendly introduction to digital forensics: from traces and clues to how we reconstruct the past using data.

Insights from a guest lecture by SEC Consult on how real-world cyber crises unfold, what defines modern threats, and why proper incident response beats courtroom-ready forensics in most cases.