In this talk, we delve into the world of Digital Forensics and Incident Response (DFIR). We will cover the basics, such as the process and terminology, and examine two distinct incidents. For each incident, I will explain the what and how of the attack, the lessons learned, and the often overlooked human aspect of incident response.
With over ten years of experience in cybersecurity and systems engineering, I work as a CSIRT Manager and IT Security Researcher at White Hat IT Security. In my free time, I always try to learn something new, fight with RE/PWN CTF challenges, and keep up with the latest cyber threats. In addition to this, I also write insightful posts about Cyber Threat Intelligence (CTI) and Digital Forensics and Incident Response (DFIR) topics, sharing my knowledge and experiences.