This webcast will discuss the benefits of bringing a DevOps mindset to DFIR and detail how to automate the evidence processing phase of a \typical" enterprise DFIR investigation using the Jenkins Continuous Integration server atop the SIFT workstation. Barry will discusses the library of Jenkins jobs that have been built up to encapsulate the Six Step process from SANS FOR508 - Advanced Digital Forensics and Incident Response, as well as the advantages of using the ELK (Elasticsearch, Logstash, Kibana) stack for timeline visualization. Finally he will detail Forensicator FATE, the lightweight DFIR case manager that abstracts away the complexity of Jenkins, allowing the forensicator's time to be spent analyzing, versus processing, the evidence.
Hear more from Barry at the DFIR Summit & Training in Austin, July 7-8th.
Why should you attend?
Register Today to learn what the experts know and get the training and knowledge you need to advance your DFIR career.