Podcast appearances and mentions of harlan carvey

We speak to Harlan Carvey, Senior Incident Responder in R&D at Huntress, to understand what threat hunting is, and even learn how surprisingly easy it is to tell if an account has been compromised! Harlan and host Jeremy also explore the claim that there's a lack of cybersecurity talents and whether organizations should have an organic incident response, outsource the function to managed service providers, or adopt an approach that combines both choices. Learn about:

Threat hunting and visibility into the endpoints across your network is an important, and sometimes overlooked, tool in your cybersecurity repertoire. Expert Windows forensic investigator and threat hunter Harlan Carvey talks about how organizations can get started threat hunting, succeeding once they start, and the importance of understanding a network's endpoints. For more information about Nuix's endpoint Adaptive Security software, visit https://www.nuix.com/products/nuix-adaptive-security.

This week, Harlan Carvey joins James and I to talk about the evolution of Windows forensics over the last decade and half or so. Harlan has more experience than most when it comes to diving into the Windows machine from a forensics perspective and is a well-spoken author of many books and blogs.   Guest Harlan Carvey ( @keydet89 ) - Digital forensics and incident response analyst with past experience in vulnerability assessments and penetration testing. Conducts research into identifying and parsing various digital artifacts from Windows systems, and has developed several innovative tools and investigative processes specific to the digital forensics analysis field. Developer of RegRipper, one of the most widely used tools for Windows Registry analysis. Has developed and teaches several courses, including Windows Forensics, Registry, and Timeline Analysis. Harlan's Blog: http://windowsir.blogspot.com  Harlan on LinkedIn: https://www.linkedin.com/in/harlan-carvey-86a8694b/ 

Nuix Head of Security, Services, and Partner Integrations, Chris Pogue, and Director of Intelligence Integration, Harlan Carvey, follow up on the Equifax data breach, discussing what we know now a few weeks after the news broke, the lessons we've learned so far, and what we can expect next.

Nuix (https://www.nuix.com/) . Harlan has been involved in information security for 28 years, which began during his military career. After leaving active duty 20 years ago, he started in consulting, performing vulnerability assessments and penetration testing. From there, it was a natural progression to digital forensics and incident response services. Harlan is an accomplished public speaker and a prolific author. He is the author of several open source tools, including WindowsIR blog (http://windowsir.blogspot.com/) . In this episode we discuss his start in information security, windows registry forensics, new artifacts, the importance of communications, mistakes examiners make, ransomware, the commonalities between information security and home beer brewing, so much more. Where you can find Harlan: LinkedIn (https://www.linkedin.com/in/harlan-carvey-86a8694b/) Twitter (https://twitter.com/keydet89) WindowsIR Blog (http://windowsir.blogspot.com/)

Join us as we interview Craig Heffner of Tactical Network Solutions regarding the recent WPS vulnerability and his Reaver tool, and as we also interview Harlan Carvey whose latest Windows Forensic Analysis Toolkit book was recently released.   Our show notes can be found here:  http://wiki.securabit.com/ShowNotes/EP100      

SecuraBit Episode 58: Forensic Goodness with Harlan Carvey Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit Guests: Harlan Carvey http://windowsir.blogspot.com/ Tools:  http://tech.groups.yahoo.com/group/win4n6/ General topics: Timeline creation Regripper Forensic trends SIFT Lance Mueller http://www.forensickb.com/ Are you interested in taking an upcoming SANS course?  Dr. Eric Cole is teaching the upcoming SANS vLive! 501 course which starts on June 22.  You can register for the course using this link, and coupon code 501SB to save $500!

Special guest Harlan Carvey talks Windows forensics, W3af Part II. Sponsored by Core Security, listen for the new customer discount code at the end of the show Sponsored by Tenable Network Security, creators of Nessus and makers of the Tenable Security Center, software that extends the power of Nessus through sophisticated reporting, remediation workflow, IDS event correlation and much more. Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program Be sure to check out "Maltego" from Paterva, try the community edition for free! Quench your thirst for knowledge at www.syngress.com and use the discount code to save 20% of all security book titles! Don't forget to sign up for our Mailing List, Forums, and log into our IRC Channel! Full Show Notes "Security Weekly Foresics Exam" Hosts: Larry "HaxorTheMatrix" Pesce, Paul Asadoorian, John Strand, Mick Douglas

"Dude, where's my Podcast?!"Today Bret and Ovie talk to Matthew Shannon from F-Response!  We discuss a ruling on 4th Amendment Search with Hashsets.  Harlan Carvey teaches Knitting.Websites of the WeekDots GlovesGoogle VideoOpps I Am LateGoogle Tenth BirthdayAnd don't forget to go to F-Response.com and take a look at the videos!!

Bret discusses his quad-monitor display unit, Wal-Mart is a chick magnet, Mercury's Free Evidence Mover, Nic Harbor updating DCFLDD.  A story about Best Buy's Geek Squad failing to destroy old hard drives and they wind up at a flea Market. Eraser programs- Derick's Boot and Nuke, www.heidi.ie/eraser .  New version to Skeuthkit found at www.sleuthkit.org, and Harlan Carvey give a go-by for his Forensic Server Project which can be found at http://windowsir.blogspot.com/.  

In this show we interview Harlan Carvey author of the Forensic Server Project. Also we talk about SansFire 2006, CyberSpeak is good for CISSP credits, piggybacking wireless, and cute overload.