From Honeypot to Discovery - Forensic Analysis with Dissect

May 21, 2025 · One min read

Join us Monday, the 26th of May, for "From Honeypot to Discovery: Forensic Analysis with Dissect". The presentation will show you how we use Dissect, an open-source tool, to investigate the content of a potentially infected qcow2 disk image. Then, we'll talk about how we integrate and automate the analysis of the qcow2 snapshot images generated by our cowrie-based SSH honeypot.

Don't miss out, we have juicy threat intelligence stuff as well (but only for your eyes)! Register here and we'll send you an invite!

SOCcare

The SOCcare project is co-funded by the European Union, alongside our collaborators, NRD Cyber Security and RevelSI, and supported by the European Cybersecurity Competence Centre (ECCC) Centre (ECCC) under Grant Agreement No. 101145843. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or the European Cybersecurity Competence Centre. Neither the European Union nor the European Cybersecurity Competence Centre can be held responsible for them.

SOCcare​

SOCcare