Welcome. If you’re reading this, I’m online!
I’m Andrew Prince, and this is my corner of the internet for writing about digital forensics and incident response. I’ve been meaning to stand up this blog for a while. Publishing notes privately into Obsidian wasn’t doing the community any favours1, and it wasn’t doing me any favours either. Writing for an audience forces a level of rigor that writing for yourself does not.
I’m also just so tired of all the AI-generated slop that seems to have encroached every corner of the cybersecurity industry. I see this as a place for me to escape it and share my unfiltered human thoughts around:
- Forensic research and artifact deep-dives
- IR lessons, wins, and screwups alike
- Malware analysis and reverse engineering
- Small tools I’ve built along the way
- Anything I feel like!
You can read more about me, and see what I’m up to now.
Footnotes
-
🇨🇦 ↩