Badge acquired @magnetforensics.bsky.social #MUS2026

Did an Amazon return today to Staples, they appeared to still be using iPhones with a home button, wonder if they still get security updates?!

Tabby stands on hind legs with one paw outstretched toward a TV displaying a capsule above water.

NASA failed to predict the real splashdown risk.

Today's fortune 🥠

Can we normalize not posting your work badge on social media? Especially if you're a CISO...

Coming soon. How to build a combined Fuji recovery and WinFE drive. #DFIR

Having been stabbed by just normal hard drive pieces multiple times before this seems accurate 🤣

Week 13 – 2026 Offline AI—built for DFIRBelkaGPT saves you days of manual review and reporting:- Transcribes audio and video- Describes and classifies pictures- Searches for similar faces- Answers questions about…

Week 13 - 2026 #DFIR

thisweekin4n6.com/2026/03/29/w...

Cobra Stitch II (Scoubidou) Friendship Network - shop.evan-roth.com Functioning ethernet cable that can be used as a bracelet, sculpture, or an ethernet extender through which to send emails, message friends, and make Zoom calls.

This takes networking to the next level shop.evan-roth.com/product/cobr...

BDC - More Battery Temps & Charging Stats for iOS Now that the CTF competitions for Magnet and MSAB summits are completed I can finally work on some new research that came from the evidence ...

#Stark4N6: BDC - More Battery Temps & Charging Stats for iOS

#DFIR #iOS #FOSS #iLEAPP

www.stark4n6.com/2026/03/bdc-...

Release Arc2Lite v2.0.0 - Combined Script · stark4n6/Arc2Lite GUI and CLI have been combined into one script. If no switches are supplied it will run the GUI. Other updates include: Hashing for archives Recursive processing for folders of archives Fallback t...

Arc2Lite v2.0.0 is out. GUI and CLI have been combined into one script.

#️⃣ - Hashing for archives
📂 - Recursive processing for folders of archives
⌚ - Fallback timestamps if extended attributes aren't found
ℹ️ - High level metadata about archive in each SQLite DB

#DFIR

github.com/stark4n6/Arc...

Killed this off quick, I guess sales sucked

Anyone have any macOS collection scripts that preferably can be deployed with Microsoft Defender Live Response? #DFIR

The Evidence Locker new additions:

- Magnet Forensics MUS/MVS CTF images including 2026's (thanks to Hexordia)
- Ashemery challenges (Ali Hadi)
- MemLabs memory challenges (Abhiram Patiballa)
- HackForge forensic challenges

#CTF #TestImages #DFIR

theevidencelocker.github.io

was just listening to Running with Scissors this morning haha

Forensics StartMe Updates (March 2026) Shortlink:  startme.stark4n6.com QR Code: If people have suggestions for additions please feel free to shoot me a message on the app formerl...

#Stark4N6: Forensics StartMe Updates (March 2026) #DFIR www.stark4n6.com/2026/03/fore...

I'm only on Windows... looks awesome

totally missed that, downloading now!

🆕 #Android Samsung #Knox (Secure Folder) history log artifact in #ALEAPP.
🪵 SQLite database contains a log of items requested be moved in or out of the secure folder in Samsung Android devices.
👏 Thanks to HSI Digital Forensics Examiner Geovanny Perez for the discovery of this artifact.

#DFIR

Will there be release builds or do I have to roll my own?

Starship.Zip Introducing Starship : Vector A fast, local dataset explorer built with Tauri, React, and DuckDB. Published here: https://github.com/MattETurner/Starship-Vector Compiled Releases: https://github.com/...

I just published Starship Vector! 🚀
An OS-independent + fast csv data explorer.
Built with: 🦀 Tauri 🎨 Tailwind CSS 🦆 DuckDB
I’d love for the DFIR community to check it out. I'm looking for feedback! www.starship.zip #DFIR #CyberSecurity #IncidentResponse #StarshipZip

Memory Analysis for #Linux has always been a bit hit-or-miss. Trail of Bits has released a tool called #mquire that doesn't require debug symbols for the originating Kernel.

#MemoryForensics #IncidentResponse #DFIR #DigitalForensics

Week 09 – 2026 Belkasoft X v2.10 Is Here—With Smarter AI Assistant- BelkaGPT now holds context—ask follow-up questions without restating your query- Import Magnet Axiom (.mfdb) cases directly for AI analysis- Sim…

Week 09 - 2026 #DFIR
thisweekin4n6.com/2026/03/01/w...

The Key to Switching Apps YouTube video by 13Cubed

🎉 It's time for a new 13Cubed episode! Learn about another obscure Registry-based execution artifact. www.youtube.com/watch?v=yoFk... #DFIR

he likes tech, but also... cats

Week 07 – 2026 No sponsor this week. If your organisation is interested, head over here to find out more. Atola TechnologyMaster Your Drives with MultiDrive BerlaEstablishing Occupant Actions & Invo…

Week 07 - 2026 #DFIR

thisweekin4n6.com/2026/02/15/w...

GitHub struggling this morning for anyone else?

who's piloting that fish haha, crazy

one reason to update your hardware too because the latest and greatest most likely won't be supported by a bunch of tools (at least from the Android side)