Incident Response
Cross-Org Handoff Forensics Kit
Packaging artifacts when another team continues the investigation: manifests, hashes, and human-readable deltas.
198,000 KRWView
Courses
Nine lab-forward tracks spanning digital evidence basics through incident response packaging. Prices are informational—there is no checkout on this static preview.
Digital Evidence Basics
Digital Evidence Basics Studio
Collect, label, and preserve workstation artifacts without breaking the activity log trail you will rely on later.
198,000 KRWView
Disk Forensics
Disk Forensics Walkthrough
Partition tables, file-system timelines, and deleted-file recovery paths explained with calm pacing.
248,000 KRWView
Incident Response
Incident Response Forensics Bridge
Translate between SOC timelines and forensic depth: tagging, escalation, and evidence packaging.
312,000 KRWView
Disk Forensics
Journal-Aware Timeline Lab
Practice rebuilding user stories when journals truncate and logs disagree.
286,000 KRWView
Memory Analysis
Malware Triage Memory Signatures
Pattern-first look for injected modules and suspicious parents without full reverse engineering.
298,000 KRWView
Memory Analysis
Memory Capture and First Pass
Volatility-style triage without drowning in plugin lists: capture, stabilize, and summarize.
268,000 KRWView
Digital Evidence Basics
Network Artifact Primer for Forensics
PCAP-adjacent skills for people who usually live on disk: DNS, HTTP headers, and TLS metadata stories.
176,000 KRWView
Reporting and Chain of Custody
Reporting and Custody Narratives
Write findings readers trust: structure, uncertainty language, and custody notes that survive a second read.
228,000 KRWView