Kevin 🤖🕵️🍺
@stark4n6.bsky.social
Lethal forensicator, researcher, developer, blogger, curator of many fine t-shirt designs, resident #DFIR beer drinker
https://startme.stark4n6.com
https://startme.stark4n6.com
Pinned
Kevin 🤖🕵️🍺
@stark4n6.bsky.social
· Nov 12
New here? Check out my one stop shop of #DFIR resources startme.stark4n6.com
One blue screen of death a week is healthy right?!
December 10, 2025 at 1:56 PM
One blue screen of death a week is healthy right?!
New resource from the team over at Hexordia, check out EvanoleVM now! #DFIR www.hexordia.com/blog/announc...
Announcing Evanole Virtual Machine — Hexordia
Over the years, we’ve given forensic training to thousands of students spanning all levels of expertise, from beginners just getting their start in forensics, to seasoned professionals looking to shar...
www.hexordia.com
December 9, 2025 at 2:12 PM
New resource from the team over at Hexordia, check out EvanoleVM now! #DFIR www.hexordia.com/blog/announc...
Morning meetings talking about garbage topics
December 2, 2025 at 1:41 PM
Morning meetings talking about garbage topics
👀
Samsung reveals Galaxy Z TriFold, confirms US launch in early 2026
Samsung reveals Galaxy Z TriFold, confirms US launch in early 2026
Samsung has officially revealed the Galaxy Z TriFold, which is set to launch in the US early next year.
more…
9to5google.com
December 2, 2025 at 1:37 AM
👀
Reposted by Kevin 🤖🕵️🍺
Over the last year I've been sharing a framework and mindset for how to perform an investigation as an analyst during Incident Response.
I hope this serves as a great introduction to ADAPT, more to come!
chocolatecoat4n6.com/2025/11/30/l...
#DFIR #InfoSec #incidentresponse
I hope this serves as a great introduction to ADAPT, more to come!
chocolatecoat4n6.com/2025/11/30/l...
#DFIR #InfoSec #incidentresponse
Learning to ADAPT | Framework for analyzing any evidence in IR
I did a few talks covering “Analysis without Paralysis” over the past year, and every time I finished I immediately thought I need to get this documented. Well, today I’ve taken t…
chocolatecoat4n6.com
December 1, 2025 at 12:24 AM
Over the last year I've been sharing a framework and mindset for how to perform an investigation as an analyst during Incident Response.
I hope this serves as a great introduction to ADAPT, more to come!
chocolatecoat4n6.com/2025/11/30/l...
#DFIR #InfoSec #incidentresponse
I hope this serves as a great introduction to ADAPT, more to come!
chocolatecoat4n6.com/2025/11/30/l...
#DFIR #InfoSec #incidentresponse
Reposted by Kevin 🤖🕵️🍺
📢 I partnered with @13cubed.bsky.social for another giveaway! 🎁
🏆 1 winner will receive a 13Cubed Investigator T-Shirt + the XPlat Bundle Complete
👕 5 winners will receive 13Cubed Investigator T-Shirts
To Enter: Like, Comment, and Repost
#DFIR #DigitalForensics #IncidentResponse
🏆 1 winner will receive a 13Cubed Investigator T-Shirt + the XPlat Bundle Complete
👕 5 winners will receive 13Cubed Investigator T-Shirts
To Enter: Like, Comment, and Repost
#DFIR #DigitalForensics #IncidentResponse
December 1, 2025 at 8:06 PM
📢 I partnered with @13cubed.bsky.social for another giveaway! 🎁
🏆 1 winner will receive a 13Cubed Investigator T-Shirt + the XPlat Bundle Complete
👕 5 winners will receive 13Cubed Investigator T-Shirts
To Enter: Like, Comment, and Repost
#DFIR #DigitalForensics #IncidentResponse
🏆 1 winner will receive a 13Cubed Investigator T-Shirt + the XPlat Bundle Complete
👕 5 winners will receive 13Cubed Investigator T-Shirts
To Enter: Like, Comment, and Repost
#DFIR #DigitalForensics #IncidentResponse
40% off #DFIR shirts at Teepublic, check out my shop! www.teepublic.com/user/stark4n6
T-Shirts by stark4n6 | TeePublic
Shop t-shirts, phone cases, hoodies, art prints and mugs created by independent artists from around the globe.
www.teepublic.com
November 24, 2025 at 9:27 PM
40% off #DFIR shirts at Teepublic, check out my shop! www.teepublic.com/user/stark4n6
Reposted by Kevin 🤖🕵️🍺
If you are needing #DigitalForensics images for testing and artifact development check out this amazing website by @stark4n6.bsky.social.
Excellent work! All the images you could need for #DFIR purposes.
www.stark4n6.com/2025/11/the-...
Excellent work! All the images you could need for #DFIR purposes.
www.stark4n6.com/2025/11/the-...
The Evidence Locker - A DFIR Image Compendium
What started as an idea a month or two ago, has become a reality. Introducing The Evidence Locker , a compiled repository of publicly avai...
www.stark4n6.com
November 14, 2025 at 10:14 PM
If you are needing #DigitalForensics images for testing and artifact development check out this amazing website by @stark4n6.bsky.social.
Excellent work! All the images you could need for #DFIR purposes.
www.stark4n6.com/2025/11/the-...
Excellent work! All the images you could need for #DFIR purposes.
www.stark4n6.com/2025/11/the-...
Reposted by Kevin 🤖🕵️🍺
Volatility/MemProcFS is for performing an autopsy long after the TA mission has ended. (mission failure for defenders)
Velociraptor is for knife-fighting with active adversaries before they complete their objective.
Want to learn how? Check it: academy.digitaldefenseinstitute.com/courses/2259...
Velociraptor is for knife-fighting with active adversaries before they complete their objective.
Want to learn how? Check it: academy.digitaldefenseinstitute.com/courses/2259...
Threat Hunting & Incident Response with Velociraptor
Master the art of threat hunting and incident response with Velociraptor, a rapidly emerging powerhouse in cybersecurity.
This hands-on course, led by industry experts Eric Capuano and Whitney Champi...
academy.digitaldefenseinstitute.com
November 18, 2025 at 10:10 AM
Volatility/MemProcFS is for performing an autopsy long after the TA mission has ended. (mission failure for defenders)
Velociraptor is for knife-fighting with active adversaries before they complete their objective.
Want to learn how? Check it: academy.digitaldefenseinstitute.com/courses/2259...
Velociraptor is for knife-fighting with active adversaries before they complete their objective.
Want to learn how? Check it: academy.digitaldefenseinstitute.com/courses/2259...
Cloudflare having issues this morning I see
November 18, 2025 at 12:29 PM
Cloudflare having issues this morning I see
DirListHash v1.1 is now released.
- Drastic time reduction (especially SQLite writing)
- Better report foldering
- Minor bug fixes and tweaks
github.com/stark4n6/Dir...
- Drastic time reduction (especially SQLite writing)
- Better report foldering
- Minor bug fixes and tweaks
github.com/stark4n6/Dir...
Release DirListHash v1.1 · stark4n6/DirListHash
Drastic time reduction (especially SQLite writing)
Better report foldering
Minor bug fixes and tweaks
Full Changelog: v1.0...v1.1
github.com
November 17, 2025 at 4:08 PM
DirListHash v1.1 is now released.
- Drastic time reduction (especially SQLite writing)
- Better report foldering
- Minor bug fixes and tweaks
github.com/stark4n6/Dir...
- Drastic time reduction (especially SQLite writing)
- Better report foldering
- Minor bug fixes and tweaks
github.com/stark4n6/Dir...
Reposted by Kevin 🤖🕵️🍺
Per chi desidera fare pratica di #InformaticaForense o testare nuovi software, The Evidence Locker di @KevinPagano3 raccoglie e cataloga numerose immagini forensi pronte per il download!
#DigitalForensics #DFIR
#DigitalForensics #DFIR
The Evidence Locker - A DFIR Image Compendium
What started as an idea a month or two ago, has become a reality. Introducing The Evidence Locker , a compiled repository of publicly avai...
www.stark4n6.com
November 13, 2025 at 4:35 PM
Per chi desidera fare pratica di #InformaticaForense o testare nuovi software, The Evidence Locker di @KevinPagano3 raccoglie e cataloga numerose immagini forensi pronte per il download!
#DigitalForensics #DFIR
#DigitalForensics #DFIR
Reposted by Kevin 🤖🕵️🍺
Weekly update. New features in OneDriveExplorer, Onedrive Evolution and schema updates. #DFIR
malwaremaloney.blogspot.com/2025/11/oned...
malwaremaloney.blogspot.com/2025/11/oned...
OneDrive updates
What's new in OneDriveExplorer OnedDriveExplorer v2025.11.07 now includes a dedicated parser for Microsoft.FilesOnDemand....
malwaremaloney.blogspot.com
November 7, 2025 at 2:54 PM
Weekly update. New features in OneDriveExplorer, Onedrive Evolution and schema updates. #DFIR
malwaremaloney.blogspot.com/2025/11/oned...
malwaremaloney.blogspot.com/2025/11/oned...
Reposted by Kevin 🤖🕵️🍺
CyberPipe-Timeliner was developed to integrate Magnet Response collections with ForensicTimeliner. This tool automates the workflow of EZTools, and transforms collection data into a unified forensic timeline. #DFIR
CyberPipe-Timeliner: From Collection to Timeline in One Script
CyberPipe-Timeliner was developed in response to a colleague's query about integrating Magnet Response collections with ForensicTimeliner. This tool automates the workflow, transforming collection data into a unified forensic timeline. With features like date filtering and flexible input options, it streamlines the timeline generation process, making it efficient and user-friendly. #DFIR
bakerstreetforensics.com
November 5, 2025 at 4:23 PM
CyberPipe-Timeliner was developed to integrate Magnet Response collections with ForensicTimeliner. This tool automates the workflow of EZTools, and transforms collection data into a unified forensic timeline. #DFIR
I cannot stress this enough, asset management should be a big part of your cybersecurity response plan
October 28, 2025 at 2:26 PM
I cannot stress this enough, asset management should be a big part of your cybersecurity response plan
#Stark4N6: Truth in Data Podcast Feature - CTFs www.stark4n6.com/2025/10/trut...
Truth in Data Podcast Feature - CTFs
I was asked to join my good friends Debbie, Jessica and Kim over at Hexordia for their Truth in Data podcast to talk one of my favorite to...
www.stark4n6.com
October 27, 2025 at 2:45 PM
#Stark4N6: Truth in Data Podcast Feature - CTFs www.stark4n6.com/2025/10/trut...
#Stark4N6: BSides NYC 2025 CTF - Forensics www.stark4n6.com/2025/10/bsid...
BSides NYC 2025 CTF - Forensics
While I unfortunately couldn't attend the conference I did see that the BSides NYC CTF board was available still ( check here ). Christopher...
www.stark4n6.com
October 23, 2025 at 7:26 PM
#Stark4N6: BSides NYC 2025 CTF - Forensics www.stark4n6.com/2025/10/bsid...
Reposted by Kevin 🤖🕵️🍺
A common theme in #DFIR is putting the target behind the keyboard. One way to help is around the use of passcodes and especially the use of biometrics. On Oct 29, join us for our next #MobileUnpacked where @cscottvance.bsky.social will dive deeper into these topics: ow.ly/p1r550XgvXb
S3:E10 // Picking apart the passcodes: Determining the method of unlock on devices - Magnet Forensics
A common theme in digital forensics is putting the target behind the keyboard. One way to help this is around the use of passcodes and especially the use of biometrics. How can we determine though wha...
ow.ly
October 22, 2025 at 7:01 PM
A common theme in #DFIR is putting the target behind the keyboard. One way to help is around the use of passcodes and especially the use of biometrics. On Oct 29, join us for our next #MobileUnpacked where @cscottvance.bsky.social will dive deeper into these topics: ow.ly/p1r550XgvXb