Profile avatar
stark4n6.bsky.social
Lethal forensicator, researcher, developer, blogger, curator of many fine t-shirt designs, resident #DFIR beer drinker https://startme.stark4n6.com
272 posts 917 followers 84 following
Prolific Poster
Posts 46 Comments 4

#Stark4N6: Forensics StartMe Updates (6/1/2025) #DFIR www.stark4n6.com/2025/06/fore...

submitted 3 days ago • 0 comments

I always hate packing because I either forget something or pack too much and it's heavy, can't find that balance

submitted 5 days ago • 0 comments

For anyone going to Techno Security next week, I'll have plenty of stickers on hand to give out, also some pins and buttons too!

submitted 6 days ago • 0 comments

Hashes for the Masses: Finding What Matters in a Sea of Samples #DFIR #MalwareAnalysis #Hash #MalChela

submitted 11 days ago • 0 comments

Anyone else just jam out to this constantly on Windows XP?!

submitted 11 days ago • 0 comments

Snakes, why did it have to be snakes

submitted 13 days ago • 0 comments

Former bird site getting hit again with outages I see

submitted 13 days ago • 0 comments

🎉 It’s time for a new 13Cubed episode! We’ll briefly explore how process hollowing works and check out the relatively new windows.hollowprocesses plugin for Volatility 3. There are also two memory samples you can download for practice! www.youtube.com/watch?v=x5mG... #DFIR

submitted 14 days ago • 0 comments

“Life is better when we leap together.” Kermit the Frog delivered a commencement speech at the University of Maryland on Thursday, the alma mater of his creator, Jim Henson. nyti.ms/4dwMuhQ

submitted 14 days ago • 342 comments

Is Purview crapping out for anyone else today? What are we doing Microsoft?!

submitted 15 days ago • 1 comment

35% sale happening now #DFIR www.teepublic.com/user/stark4n6

submitted 15 days ago • 0 comments

MalChela 2.2 “REMnux” Release More tools. More Docs. More Power. #DFIR #MalwareAnalysis #YaraX #Volatility #Tshark #MalChela

submitted 16 days ago • 0 comments

The irony of The Doors Rider's on the Storm coming on as I'm driving through an absolute monsoon

submitted 23 days ago • 0 comments

Happy Five/Nine Day to those who celebrate

submitted 28 days ago • 0 comments

I was today year's old when I found out they make Thunderbolt 5 NVME enclosures now, look at this beast amzn.to/4jGyR1L

submitted 29 days ago • 0 comments

CyberPipe v5.1 is out with a few targeted improvements to make live response a bit smoother. Collection profiles can now be passed directly as arguments using -CollectionProfile. No need to modify the script or hardcode anything… bakerstreetforensics.com/2025/05/08/c... #DFIR

submitted 29 days ago • 0 comments

"iOS Unified Logs: The Myth of 30 Days Retention - Analysis of TTLs and log stats Command" -> www.ios-unifiedlogs.com/post/ios-uni... #DFIR #iOS #logs

submitted 31 days ago • 0 comments

🚀 MalChela v2.1 is now live! This update focuses on smoother workflows, better third-party tool integration, and more control for forensic analysts and malware researchers.

submitted 35 days ago • 0 comments

Amazon driver just pulled up with the windows down blasting Rick Astley 😂

submitted 38 days ago • 0 comments

Week 17 - 2025 #DFIR thisweekin4n6.com/2025/04/27/w...

submitted 40 days ago • 0 comments

I recorded a brief video, walking through some of the different functions in MalChela in the new GUI, stepping through basic static analysis to yara rule writing - all in minutes.

youtu.be/hI1EqojI1DA #DFIR #MalwareAnalysis #YARA #MITRE #Rust MalChela: github.com/dwmetz/MalCh...

submitted 39 days ago • 0 comments

Arsenal Image Mounter v3.11.307 is now available with minor fixes & other improvements which include improved handling of corrupt Registry hives when launching virtual machines. See the change log for more information. arsenalrecon.com/downloads #DFIR

submitted 42 days ago • 0 comments

Whose bright idea was it to put outlets at the airport on a slant downward so chargers just fall out unless they have a ground pin 😂

submitted 42 days ago • 2 comments

It's a new day, another day to hate Purview once again 😂

submitted 45 days ago • 0 comments

Have you ever wondered whether a iOS sysdiagnose contains all Unified Logs entries? I did: Logs in a Sysdiagnose - It's about time... www.linkedin.com/pulse/logs-s... #iOS #dfir #forensics #unifiedlogs

submitted 46 days ago • 0 comments

Week 16 – 2025 #DFIR thisweekin4n6.com/2025/04/20/w...

submitted 48 days ago • 0 comments

Arc2Lite v0.0.6 release: 🪟 GUI added 🐛 Bug fixes 🔗 Download link: github.com/stark4n6/Arc...

submitted 49 days ago • 0 comments

#Stark4N6: Tracking iOS App Installs and Purchase History with StoreUser DB #DFIR www.stark4n6.com/2025/04/trac...

submitted 53 days ago • 0 comments

Week 15 - 2025 #DFIR thisweekin4n6.com/2025/04/13/w...

submitted 54 days ago • 0 comments

It's days like today that make me appreciate having a cold DIPA in the fridge 😂 🍻

submitted 55 days ago • 0 comments

Tonight's fortune 🥠

submitted 56 days ago • 0 comments

iLEAPP v2.1.2 out now! #DFIR #MobileForensics github.com/abrignoni/iL...

submitted 57 days ago • 0 comments

Check out our first episode of the #TruthInData podcast! Our topic this week: Evidence Gone: The Perils of Delayed Mobile Acquisition youtu.be/vb0G-uLvwMM?... With Debbie Garner & Kim Bradley #DFIR

submitted 59 days ago • 0 comments

Weekend sale happening now

submitted 61 days ago • 0 comments

I wish there was an easy way to know what Discord server a ping noise is coming from

submitted 63 days ago • 0 comments

#Stark4N6: Forensics StartMe Updates (4/1/2025) #DFIR www.stark4n6.com/2025/04/fore...

submitted 66 days ago • 0 comments

Inactivity reboot coming to Android 16?! #DFIR www.androidauthority.com/android-inac...

submitted 67 days ago • 0 comments

It’s not often that I get to revisit old research, but this has happened twice now in the past couple of months. There’s an update to my Google Maps on Android article. "We practitioners are in a constant state of learning; our discipline requires it.” #DFIR thebinaryhick.blog/2023/10/17/f...

submitted 69 days ago • 0 comments

We are excited to announce that the @volatilityfoundation.org #PluginContest First Place winner is: Valentin Obst for btf2json Read the full Contest Results: volatilityfoundation.org/the-2024-vol... Congrats to all winners & thank you to all participants! #DFIR #memoryforensics

submitted 70 days ago • 1 comment

🗝️ Currently attending the DEX-XL digital forensics conference in Noordwijkerhout, Netherlands, delivering a keynote on Digital Forensics Scripting. 🌷 Had a chance to spend an afternoon in Amsterdam, one of the most beautiful cities in Europe. #DigitalForensics #DFIR #MobileForensics #DEXXL

submitted 72 days ago • 0 comments

You could not write a crossover episode between "Arrested Development" and "It's Always Sunny in Philadelphia" that even remotely approached this level of incompetence.

submitted 72 days ago • 0 comments

submitted 72 days ago • 1 comment

When you wonder why a semi-frequently used tool hasn't been updated in years... because the author passed away 😢

submitted 72 days ago • 1 comment

submitted 73 days ago • 20 comments

Some of you asked previously, so I'm partnering with Hexordia to provide 15% off training courses, use promo code KP15 at checkout! #DFIR #DFIRTraining learn.hexordia.com?affCode=TCMPMD

submitted 73 days ago • 0 comments

One of the lowest prices I've seen on this 4TB Samsung T9 amzn.to/41XwOyJ

submitted 74 days ago • 0 comments