DFIR musings

tomchop's musings