Register now for SANS Cyber Defense Initiative 2016 and save $400.

DFIR Prague 2014

Prague, Czech Republic | Mon, Sep 29, 2014 - Sat, Oct 11, 2014

SIFT Workstation & The Art of Incident Response

  • Rob Lee
  • Monday, September 29th, 6:00pm - 7:00pm

An international team of forensics experts helped create the SIFTWorkstation, an all inclusive incident response and forensics analysis capability. The distribution is free and available to the whole community as a public service. The free SIFT toolkit, that can match any modern forensic tool suite, is also featured in SANS' Digital Forensics and Incident Response courses (FOR 508, FOR526 and FOR572). It demonstrates that advanced investigations and responding to intrusions can be accomplished using cutting-edge open-source tools that are freely available and frequently updated. The SANS Investigative Forensic Toolkit has become the most popular download on the SANS website. Over the past year, 20,000 downloads of the SIFT workstation has happened and it has become a staple in many organizations' key tools to perform incident response.

Learn how to use the SIFT workstation 3.0, configure, and get up and running finding evil in a variety of forensic cases during this presentation.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
Monday, September 29
Session Speaker Time Type
SIFT Workstation & The Art of Incident Response Rob Lee Monday, September 29th, 6:00pm - 7:00pm Keynote
Tuesday, September 30
Session Speaker Time Type
Sushi Grade Smartphone Forensics on a Ramen Noodle Budget Heather Mahalik Tuesday, September 30th, 6:00pm - 7:00pm SANS@Night
Everything They Told Me About Security Was Wrong John Strand Tuesday, September 30th, 7:00pm - 8:00pm SANS@Night
Tuesday, October 7
Session Speaker Time Type
The Great Browser Schism: How to Analyze IE10 & IE11 Chad Tilbury Tuesday, October 7th, 6:00pm - 7:00pm SANS@Night