Forensic Timeline Creation: my own workflow

Every analyst, during day by day experiences refines its own workflow for timeline creation. Today i propose mine. Required tools Sleutkit Sleuth Kit is a collection of command line tools that allows you to analyze disk images. https://www.sleuthkit.org/sleuthkit/ Volatility The well-known open source memory forensics framework for incident response and …

Article Link: https://andreafortuna.org/dfir/forensic-timeline-creation-my-own-workflow/