What is DFIR? - digested from a blogpost
03/22/2020
I'm joining Aon's Los Angeles office this Summer as a Cyber Summer Associate in Digital Forensics. Lemme tell you a lil about Aon's Cyber services and DFIR!
Aon
Aon provides many services, one of which is cybersecurity consulting. Within cybersec consulting, they have three large groups.
Their LA office has a large DFIR team and two smaller Pen-Testing and Consulting teams.
DFIR Digested
Digital Forensics = finding out what, when, and who (but digitally!)
Comprised of two fields = e-discovery + DFIR
e-discovery = legal side of forensics (pertaining to humans)
For example, a human reading the emails you deleted.
DFIR = digital stuffs
Most of the time, you're recovering wholly undeleted data from memory and slack space on hard drives. Some recommended products? Volatility and Mandiant Redline.