Phill Moore

I'm a digital forensics and incident response professional based in Sydney, Australia, with a passion for sharing knowledge and building community resources.

Key Contributions

• SANS Institute Instructor - Teaching FOR500 (Windows Forensic Analysis) and FOR528 (Ransomware for Incident Responders)
• Forensic 4Cast Award Winner - "Resource of the Year" 2019 for community contributions
• Awesome-BEC Repository - Comprehensive resource for Business Email Compromise investigations in Office365/AzureAD environments
• RULER Project Co-Founder - Community-driven repository documenting forensic artifacts in application logs
• ThisWeekIn4n6.com - Weekly digest keeping the DFIR community informed about the latest news, tools, and research
• ThinkDFIR.com - Platform for sharing digital forensics insights and research
• Community Educator - Active contributor to open-source DFIR tools and resources

Popular Projects

• Awesome-BEC - Star repository for BEC investigation resources and techniques
• RULER Project - Collaborative effort to document forensic logging across applications
• Keychain Parser - Perl script for parsing macOS security CLI output into readable format