Digital Forensics: Metadata

1. Exiftool

Exiftool Test.jpg is a picture taken on a Pixel 4a phone

2. FireEye Redline

1. Standard Collector — Configures scripts to gather the minimum data for an analysis including memory2. Comprehensive Collector — Gather most of the data that Redline collects and analyses. This option is usually used for a full analysis which is what most digital forensic investigators use. This includes memory, disk, network and system information.3. IOC Collector — Collects data from Indicators of Compromise. This includes hashes, domain names, IP’s that are suspicious.

3. SquirrelGripper.pl

--

--

--

I focus on Malware, RE, DFIR. This blog is used to improve my understanding of these concepts and show my progress.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

How to keep call recording PCI compliant

On May 10, 2021 — May 15, 2021, the withdrawals will be made to the submitted Cloudbit Cash (CDBC)…

Offensive Security Proving Grounds Walk Through “Nibbles”

Why LDaaS (Linked Data as a Service) is the Future

How Being Hacked Launched my Career in Cybersecurity

Cyber Investigator CTF Writeup

How To Find Domain Ownership in the GDPR Era

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Ben Lee

Ben Lee

I focus on Malware, RE, DFIR. This blog is used to improve my understanding of these concepts and show my progress.

More from Medium

Exploring Regression features for predicting Heart Failure

Tableau CRM (TCRM) is a business intelligence platform that is designed to augment your Salesforce…

AI FOR SPACE EXPLORATION

Crypto Kombat: Results of the 2021 Year