>_ Cyber Research

Digital forensics
& threat research.

Incident response writeups, threat analysis, and practical cheatsheets for security practitioners.

Browse posts About

DFIR

Host, network, and cloud response workflows.

Threats

Campaign timelines, malware trends, and defensive impact.

Cheatsheets

Fast references for detection, triage, and containment.

Featured

View archive

cheatsheets Feb 15, 2026 12 min read

DFIR Artifact Quick Reference

DFIR Artifact Quick Reference Audience: DFIR practitioners conducting Windows-centric incident response and forensic investigations. Scope: Windows 10/11, Server 2016–2022 unless noted. Legend: [EZ] = Eric Zimmerman tool | [TS] = Triaged from live system | …