DFIRVault

Blog

Tooling and Software
Jacob Wilson
Jun 13, 2025

SpiderFoot Windows Quick Launcher

As a digital forensics and incident response (DFIR) professional, I'm always looking for ways to streamline...

Read More
Incident Response Threat Hunting Tooling and Software
Jacob Wilson
Jun 12, 2025

Splunk DFIR Dashboard Collection

Digital Forensics and Incident Response (DFIR) professionals know that speed and efficiency are critical during investigations....

Read More
Threat Hunting Tooling and Software
Jacob Wilson
May 22, 2025

AI-Assisted Hunting: Ollama Meets ELK

When we work with a large amount of logs, sometimes millions or billions of events need...

Read More
Cloud Forensics Incident Response Threat Hunting Tooling and Software Windows Forensics
Jacob Wilson
May 21, 2025

ForensIQ

Introducing ForensIQ: AI-Powered Elasticsearch Log Analysis for Cybersecurity Investigations The Challenge of Modern Log Analysis As...

Read More
Cloud Forensics Incident Response Threat Hunting Tooling and Software
Jacob Wilson
May 21, 2025

CSV2ELK

Why I Built ThisAs a DFIR professional, I constantly deal with:CSV exports from SIEMs, firewalls, and malware...

Read More
Tooling and Software
Jacob Wilson
Apr 7, 2025

Setting up logontracer daemon

Step 1 – Create Bash Script: Touch logontracer_run.sh Chmod +x logontracer_run.sh Nano logontracer_run.sh #!/bin/bash # Get...

Read More
1 2 3

Popular Categories

Popular Posts

FivePM – Threat Hunter By Jacob Wilson November 6, 2025
CrowdStrike Investigator By Jacob Wilson September 24, 2025
SFTP Monitor Tool By Jacob Wilson August 27, 2025

Popular Tags

AI Chainsaw Crowdstrike CSV CSV2ELK DFIR Elastic ELK FivePM Hayabusa Incident Response LLM Malware Analysis NGINX Ollama OSINT SFTP Splunk THOR Threat Hunting ThreatHunting timeline Tooling