Twitter | Search | |
David Cowen
SANS Certified Instructor, Expert Witness, Hacking Exposed Computer Forensics author and Blog author
4,579
Tweets
1,078
Following
8,617
Followers
Tweets
David Cowen retweeted
Dan 4h
Some reminders about Windows file times: h/t
Reply Retweet Like
David Cowen 3h
Replying to @Cheeky4n6Monkey
You might say we are bananas over it
Reply Retweet Like
David Cowen retweeted
Brian Carrier 6h
agenda is up. Register now to see correlation, memory, OS X, alexa, and malware forensics talks.
Reply Retweet Like
David Cowen 8h
Replying to @geekcrue
I decided to take it to see how it was and I agree with their decision
Reply Retweet Like
David Cowen retweeted
arangodb 10h
Oct 17 our community mbr @ "A for – Artifact Correlation w/ "
Reply Retweet Like
David Cowen 10h
Replying to @cyb3rops
Or 1. They already took everything else worth taking 2. The AV system detected its own signature in memory (this has happened)
Reply Retweet Like
David Cowen 10h
"the CCFP will be designated an inactive credential effective three years from today" Not going to say I'm sad about this
Reply Retweet Like
David Cowen 10h
Interested in and ? You should really check out this post from our favorite monkey who breaks it down and makes sense of it
Reply Retweet Like
David Cowen Aug 20
Sounds good!
Reply Retweet Like
David Cowen retweeted
Phill Moore Aug 20
Reply Retweet Like
David Cowen retweeted
SANS DFIR Aug 19
Hitting the east coast in for the updated FOR500 w/ 9/25-30
Reply Retweet Like
David Cowen retweeted
Jessica Hyde Aug 18
If you use shellbags in your investigations, please watch the knowledge shares... new circumstance for shellbags.
Reply Retweet Like
David Cowen Aug 18
Live in 5 minutes the with Chuck Norris
Reply Retweet Like
David Cowen Aug 18
Replying to @KyleMRhodes
Chuck Norris confirmed
Reply Retweet Like
David Cowen Aug 18
Replying to @KyleMRhodes
Our original guests had to reschedule so I think this will be shell item interaction and artifact correlation with chuck norris
Reply Retweet Like
David Cowen Aug 18
Live at Noon CST it's the tune in!
Reply Retweet Like
David Cowen retweeted
Ryan Benson Aug 17
ICYMI: Visualizing activity from an encrypted iPhone backup using only metadata |
Reply Retweet Like
David Cowen retweeted
Robert L. Adams Aug 16
39 days until with !
Reply Retweet Like
David Cowen retweeted
Roxy Dee 👩‍💻🐧 Aug 16
Replying to @theroxyd
If u don't block out time to study on your calendar, it might not happen. Write your goals, make deadlines, put it on the calendar.
Reply Retweet Like
David Cowen retweeted
Bradley Schatz Aug 16
My new AFF4 hashing presentation slides from USA 2017 are up.
Reply Retweet Like