Twitter | Search | |
David Cowen
SANS Certified Instructor, Expert Witness, Hacking Exposed Computer Forensics author and Blog author
5,947
Tweets
1,086
Following
11,583
Followers
Tweets
David Cowen retweeted
Minoru Kobayashi 19h
Windows 10 Storage sense and Recycle.bin - Blog
Reply Retweet Like
David Cowen 20h
Replying to @matt0177
Reply Retweet Like
David Cowen Jan 22
Does that mean you will be there amigo?
Reply Retweet Like
David Cowen retweeted
👼Ąż杏 Jan 18
Current status of what and I have been working on. (this is automatically generated, vector, SVG and PDF compatible, adapts to fonts, 0.5 sec, client side, standalone, and just takes JSON as input - so you can plug any parser).
Reply Retweet Like
David Cowen Jan 21
Daily Blog #604: A must read Amcache paper for all of by
Reply Retweet Like
David Cowen retweeted
VirusShare ☣ Jan 21
My apologies for having been away. I've been hiding in the engine room fixing many broken things and then got sidetracked with personal chaos at the end of the year. Brace for a *big* release.
Reply Retweet Like
David Cowen Jan 21
I'm making my through it now, really appreciate the level of detail
Reply Retweet Like
David Cowen Jan 21
Replying to @sroberts
I'm sitting in the backrow near the sound guy!
Reply Retweet Like
David Cowen Jan 20
This weeks Sunday Funday focuses on figuring out what and why executables get logged in the Syscache hive on Server 2008 R2. So do some research and get a $100 amazon giftcard!
Reply Retweet Like
David Cowen retweeted
Phill Moore Jan 19
Week 3 - 2019 (with contributions from )
Reply Retweet Like
David Cowen Jan 20
Sounds like a good candidate for this week's testing
Reply Retweet Like
David Cowen retweeted
Hideaki Ihara Jan 19
Reply Retweet Like
David Cowen Jan 19
Daily Blog #602: Solution Saturday 1/19/19 solving the missing run count problem in UserAssist with and
Reply Retweet Like
David Cowen Jan 19
Replying to @vicomarziale
Did you look at this yet?
Reply Retweet Like
David Cowen Jan 19
Replying to @vicomarziale
Reply Retweet Like
David Cowen retweeted
Maxim Suhanov Jan 18
Reply Retweet Like
David Cowen retweeted
Eric Zimmerman Jan 17
Look out! Locked file support added to AmcacheParser, AppCompatCacheParser, MFTECmd, ShellBags Explorer (and SBECmd), and Registry Explorer (and RECmd) Let the live response begin!
Reply Retweet Like
David Cowen Jan 17
Replying to @phillmoore
Still awake?
Reply Retweet Like
David Cowen Jan 17
Replying to @Mokosiy @EnfuseCon
Thanks Vitaliy, would be good to have it back. There is a pretty huge gap without it if they can retain their previous numbers
Reply Retweet Like
David Cowen retweeted
Arsenal Consulting Jan 15
Just got something in the mail that should help us accelerate data preservation & preliminary analysis in our most pressing cases. Thanks ⁦⁦⁩!
Reply Retweet Like