Investigations and Incident Response
Uncover Digital Truth
Investigation Capabilities. Trade Secret Theft. Advanced Capabilities. Consulting.
Incident Response/Intrusion Analysis
- Ability to identify malware and persistence mechanisms residing solely within system memory
- Able to identify malicious command and control servers, and other indicators of compromise
- Experience analyzing attacker commands and identifying complex data exfiltration pathways
- Memory Forensics
- Malware Analysis
- Netflow/PCAP Data Analysis
- Repeated success identifying intellectual property theft, and recovering the raw data upload activity to cloud storage platforms
- Capability to identify suspicious employee behavior and associated file activities
- Employee Data Exfiltration
- Mobile Forensics Expertise
- Knowledge of advanced In System Programming methodologies to recover images from damaged phones.
- Experience removing memory chips from phones, in order to extract data.
- JTAG/ISP Data Extractions.
- Investigation Scoping
- Incident Remediation