Mike Cohen
@greatcoffee.org
Mike is a digital paleontologist working on velociraptor
When thinking about memory analysis do you immediately think a memory image? Did you know Velociraptor has powerful live memory analysis capabilities, that can be applied at scale?
In my latest post I cover some memory analysis capabilities and how they can be used to detect inline DLL hooking.
In my latest post I cover some memory analysis capabilities and how they can be used to detect inline DLL hooking.
Memory Analysis with Velociraptor - Part 1 :: Velociraptor - Digging deeper!
This Blog post explores Velociraptor's memory analysis capabilities.
docs.velociraptor.app
November 18, 2025 at 2:43 PM
When thinking about memory analysis do you immediately think a memory image? Did you know Velociraptor has powerful live memory analysis capabilities, that can be applied at scale?
In my latest post I cover some memory analysis capabilities and how they can be used to detect inline DLL hooking.
In my latest post I cover some memory analysis capabilities and how they can be used to detect inline DLL hooking.
When analyzing Triage collections with Velociraptor, do you ever wish you could go back and re-collect some other files that later became relevant?
I have written a blog post on adaptive triage collections.
docs.velociraptor.app/blog/2025/20...
#velociraptor #dfir #digitalforensics #triage
I have written a blog post on adaptive triage collections.
docs.velociraptor.app/blog/2025/20...
#velociraptor #dfir #digitalforensics #triage
Adaptive Collections in Velociraptor :: Velociraptor - Digging deeper!
Velociraptor Adaptive Collections
docs.velociraptor.app
October 7, 2025 at 8:42 AM
When analyzing Triage collections with Velociraptor, do you ever wish you could go back and re-collect some other files that later became relevant?
I have written a blog post on adaptive triage collections.
docs.velociraptor.app/blog/2025/20...
#velociraptor #dfir #digitalforensics #triage
I have written a blog post on adaptive triage collections.
docs.velociraptor.app/blog/2025/20...
#velociraptor #dfir #digitalforensics #triage
At this year's AusCERT conference we presented "Sigma and Detection Engineering with Velociraptor". Learn how to implement real time Sigma detection with forensic enhancements.
Full presentation youtube.com/watch?v=3EBr... and slides docs.velociraptor.app/presentation...
Full presentation youtube.com/watch?v=3EBr... and slides docs.velociraptor.app/presentation...
Auscert 2025 Detection Engineering Workshop
YouTube video by Velocidex Enterprises
youtube.com
May 24, 2025 at 4:44 AM
At this year's AusCERT conference we presented "Sigma and Detection Engineering with Velociraptor". Learn how to implement real time Sigma detection with forensic enhancements.
Full presentation youtube.com/watch?v=3EBr... and slides docs.velociraptor.app/presentation...
Full presentation youtube.com/watch?v=3EBr... and slides docs.velociraptor.app/presentation...