DFIR Blog
  • Infosec
    • Blog
    • Threat Landscape
  • Digital Forensics
    • Windows Forensics
    • Mac Forensics
    • Memory Forensics
    • Forensic Resources
  • Incident Response
  • CISSP
    • Domain-1
    • Domain-2
    • Domain-3
    • Domain-4
    • Domain-5
    • Domain-6
    • Domain-7
    • Domain-8
  • Contact
  • HTB
  • Productivity

Blog

Master boot Record

11/14/2015

 
what is Master boot record
MBR is first sector of a data storage device such as HD. It stores information about logical Partition like C:, D: (max 4)
- File type
-Store/end (CHS Format)
-Offset
-Partition Size
-Weather partition is boot-able or not 
- Works with Max 2 TB Drives

Boot Loader - Small bit of code which is used to store boot information.

​What is Lost Cluster?

11/14/2015

 
When an os marks a cluster as a used, but does not allocate any files to them, such clusters are lost clusters.

In windows OS, ScanDisk utility or CheckDisk (windows 10) can identify such lost clusters

​
Picture
Another way to check the status of your HD is though command prompt in windows:
​
Picture

What is a Cluster

11/14/2015

 
​
Cluster is smallest allocation unit in a hard-drive. Cluster is a set of sectors and tracks. The file system divides the storage on a disk volume into discreet chunks of data for efficient disk usage & performance. This chunks are called cluster. 

To put it in simple terms, you get a sector when you take a bunch of things and divide them. You get a cluster when you take a bunch of things and put them together.

What is a sector?

11/14/2015

 
Sector is smallest physical storage unit on a disk platter. Normally holds 512 Bytes and few additional bytes for drive control & error correction.
Data is stored on a disk in a contiguous series (Sharing a common border)
For example: if file size in 700 Bytes, two 512 sectors are allocated to the file.

​Why hackers are targeting healthcare data?

11/14/2015

 
2015 is already a year of healthcare data breaches and it’s getting worse every day. Earlier this year hackers broke into Antham Database containing around 78 million records. This month, Excellus Blue Cross Blue Shield is the latest health care company to discover a
data breach. Now the big question is why hackers are targeting Health Care Data?

Health care data brings significant value, much more than the financial data. Financial data has a limited lifespan. Prescription & Medical records are permanent. Health care data is also a great resource for identity theft.
​
Health care data has a significant resale value in markets too.

    Mac Forensics
    Windows Forensics
    Forensic Tools

    Categories

    All
    Attack
    Bash
    Bigdata
    Corporate
    Ctf
    Data
    Digital Forensics
    Docker
    EDR
    Forensics
    Hacking
    Hadoop
    HDFS
    Health Care
    Linux
    Memory
    Network
    Network Forensics
    PCIP
    SQL
    Windows
    Wireshark

    Archives

    January 2023
    October 2019
    September 2019
    July 2019
    June 2019
    May 2019
    March 2019
    April 2018
    March 2018
    February 2018
    July 2017
    June 2017
    May 2017
    November 2015
    October 2015
    July 2015
    June 2015
    May 2015
    April 2015
    March 2015

    RSS Feed

  • Infosec
    • Blog
    • Threat Landscape
  • Digital Forensics
    • Windows Forensics
    • Mac Forensics
    • Memory Forensics
    • Forensic Resources
  • Incident Response
  • CISSP
    • Domain-1
    • Domain-2
    • Domain-3
    • Domain-4
    • Domain-5
    • Domain-6
    • Domain-7
    • Domain-8
  • Contact
  • HTB
  • Productivity