Training
Featured CourseView All Courses
Get a free hour of SANS training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
Cloud Security Training, Courses, and Resources
Can't find what you are looking for?

Let us help.

Contact us
Community Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

AI Risk & Readiness

Explore expert-driven guidance, training, and tools to help defend against AI-powered threats and adopt AI securely.

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Talk With an Expert
Talk With an Expert

A Visual Summary of SANS DFIR Summit 2025

Check out these graphic recordings created in real-time throughout the event for SANS DFIR Summit 2025.

Authored bySANS Institute
SANS Institute

On July 24-25, attendees joined us in Salt Lake City, Utah or tuned in Live Online for the SANS Digital Forensics & Incident Response Summit 2025!

We invited Ashton Rodenhiser of Mind's Eye Creative to create graphic recordings of our Summit presentations. If you missed a talk or are looking to view the Summit through a visual lens, take a look at the recordings below.

If you registered for the Summit, video recordings are available on your Summit Access page in your SANS Portal.

Keynote | DFIR AI-ze Your Workflow

Mari DeGrazia, Certified Instructor

A Visual Summary of SANS DFIR Summit 2025

A North Korean Cyber Operation: Exposing ARP-Based Covert C2s, WebSocket Malware, and Video Conference Software Abuse

Luis Garcia, Incident Response Expert, Sygnia

Matthew Mosley, Manager of Incident Response, Sygnia

A Visual Summary of SANS DFIR Summit 2025

Playbook Power-Up: Applying Modular Design to Maintain IR Playbooks at Scale

Jessica Gorman, Sr Director of Security Operations and Incident Response, Experian, Georgetown University

A Visual Summary of SANS DFIR Summit 2025

Think Like an Examiner: Strengthening Your Forensic & Response Mindset

Tony Knutson, Principal Consultant, Palo Alto Unit 42

A Visual Summary of SANS DFIR Summit 2025

Investigating a Malicious Script in Microsoft Intune: A DFIR Case Study

Dennis Labossiere, Director, KPMG LLP

A Visual Summary of SANS DFIR Summit 2025

MDR to IR Handoffs: Stick The Landing

Jess Burn, Principal Analyst, Forrester Research

Jeff Pollard, VP, Principal Analyst, Forrester

A Visual Summary of SANS DFIR Summit 2025

Making Sense of the Chaos: When to Conduct Structured and Unstructured Threat Hunts

Lee Archinal, Senior Threat Hunt Analyst, Intel 471

Arun Warikoo, Head of Cyber Threat Intelligence, CIB Americas BNP Paribas, BNP Paribas

A Visual Summary of SANS DFIR Summit 2025

Does Slicing Onions Make You Cry - Forensic Analysis of TAILs

Aaron Sparling, Principal Incident Response Engineer, Walmart - Cyber Security Incident Response

A Visual Summary of SANS DFIR Summit 2025

Ensuring Data Integrity in Incident Response: Tools and Techniques for Forensically Sound Log Extraction

Colin Meek, DFIR Consultant, Stroz Friedberg

A Visual Summary of SANS DFIR Summit 2025

Finding Relevant Alerts, Events and Logs

Ezz Tahoun, Lead researcher, University of Waterloo

A Visual Summary of SANS DFIR Summit 2025

MacOS Endpoint Security Framework: Not Another MacOS Log Source

Jacob Latonis, Staff Software Engineer, Proofpoint

Julia Paluch, Engineer, GreyNoise Intelligence

Coming soon!

If you'd like to check out our other upcoming Summits, you can view the latest listing here.

Meet the Expert

SANS Institute
SANS Institute

SANS Institute

Launched in 1989 as a cooperative for information security thought leadership, it is SANS’ ongoing mission to empower cyber security professionals with the practical skills and knowledge they need to make our world a safer place.

Read more about SANS Institute