Training
Featured CourseView All Courses
Get a free hour of SANS training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
Cloud Security Training
Can't find what you are looking for?

Let us help.

Contact us
Community Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

AI Risk & Readiness

Explore expert-driven guidance, training, and tools to help defend against AI-powered threats and adopt AI securely.

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Talk With an Expert
Talk With an Expert

A Visual Summary of SANS DFIR Summit 2022

Explore cybersecurity training, certifications, and resources from SANS Institute – the global leader in information security education.

Authored bySANS Institute
SANS Institute

On August 15-16, attendees joined us in Austin, TX or tuned in Live Online for the SANS DFIR Summit for its 15th anniversary!

We invited Ashton Rodenhiser of Mind's Eye Creative to create graphic recordings of our Summit presentations. If you missed a talk or are looking to view the Summit through a visual lens, take a look at the recordings below.

In addition to graphic recordings, PDFs of Summit presentations will be made available on the SANS Summit Archives page (SANS account required) and videos will be posted to YouTube over the next several months.

*If you registered for the Summit, video recordings are available on your Summit Access page in your SANS Portal.

Keynote: DFIR Evidence Collection and Preservation for the Cloud

Josh Lemon, Certified Instructor | Megan Roddie, Course Author

01_SansDFIR_Lemon_Roddie.jpg

Building a Pattern of Life - Leveraging Location and Health Data

Jared Barnhart, Digital Intelligence Specialist, Cellebrite | Heather Mahalik, Faculty Fellow

02_SansDFIR_Jarded_Barnhart_and_Heather_Mahalik.jpg

Missing Pieces - Tips and Tricks on how to ensure your acquisitions aren’t missing critical data

03_SansDFIR_Jessica_Hyde_and_Cesar_Quezada.jpg

A little bit of this, a little bit of dat

04_SansDFIR_BrianMaloney.jpg

Stepping Out of the Android Malware Sandbox - Running & Analyzing Malware on a Physical Honeyphone

05_SansDFIR_JoshuaHickman.jpg

The Truth About USB Device Serial Numbers – (and the lies your tools tell)

06_SansDFIR_KevinRipa.jpg

Establishing Connections: Illuminating Remote Access Artifacts in Windows

07_SansDFIR_FernandoTomlinson.jpg

Cracking the Beacon: Automating the extraction of implant configurations

08_SansDFIR_Derek_Ditch_and_Jessica_David.jpg

Stay ahead of the game: automate your threat hunting workflows

09_SansDFIR_Towne_Besel.jpg

Keynote: The Godfather of Forensics: How to Leverage Your “Year One” to Get an Offer You Cannot Refuse

10_SansDFIR_Robert_T._Lee.jpg

Hunting for Active Directory persistence

11_SansDFIR_ThomasDiot.jpg

Hunting threat actors using OSINT forensics

12_SansDFIR_AbiWaddell.jpg

Conducting Forensic Examinations in Zero Trust Environments

13_SansDFIR_JustinTolman.jpg

Analysis Paralysis? Setting the Right Goal for Your Incident Analysis

14_SansDFIR_Gerard_Johansen_(1).jpg

WhatsApp with Your iMessage, Dude?!

15_SansDFIR_Stacey_Randolph_and_Christopher_Vance.jpg

Detecting malicious actors in Google Workspace

16_SansDFIR_KorstiaanStam.jpg

Updates in DFIR

17_SansDFIR_Philip_Hagen_and_Healther_Mahalik.jpg

If you'd like to check out our other upcoming Summits, you can view the latest listing here.

Meet the Expert

SANS Institute
SANS Institute

SANS Institute

Launched in 1989 as a cooperative for information security thought leadership, it is SANS’ ongoing mission to empower cyber security professionals with the practical skills and knowledge they need to make our world a safer place.

Read more about SANS Institute