I have recently received DD images of data contained in the Phoenix Hemodialysis machine. I wanted to be able to create a baseline of the information which is stored on the storage. The reason this is very important is that in DFIR we want to know what is normal to …
Veronica Schmitt 
Behind The Incident – Episode 7: Sarah Edwards
This lady does not need any introduction. She is the Apple Forensic Jedi Master, although sometimes I question whether she is not more Sith than Jedi. She is the pioneer of Apollo a must-have application for Apple Forensics. This tool is the ultimate parser for lazy people and yes this …
Behind The Incident – Episode 6 : Adam Harrison
Last year in Prague I met the coin slayer Adam Harrison. He was presenting his work on ExFAT forensics and the discrepancies on how forensic tools would parse these dates. Soon I started following his work and found him a comedian of sorts. In this episode, he shares some of …
DEF CON Group DC2711 Event
This past weekend I had the privilege of attending the inaugural event for the DEF CON Group Johannesburg DC2711. The event saw a line up of both international and local speakers. I personally got to share the stage with fellow Goon and friend Jayson Street. The event saw an emotional …