whoami

Hey everyone my name is Fabian Mendoza and I’m currently a Senior DFIR Consultant at one of the top Incident Response vendors. I’ve been working in the tech industry for a total of 9 years now with previous experience coming in RF Engineering, Desktop Support, and ETL Programming before finally landing in Digital Forensics and Incident Response (DFIR) in 2019 and never looking back.

I have a strong passion in investigating cybercrime, particularly cases involving ransomware actors and advanced persistent threats (APTs) and blogging about cool things I’ve stumbled on in the wild. I spend most of my time chewing through logs of all kinds, performing host based forensics, and threat hunting evil in environments of all sizes. When I’m not responding to an incident, you can find me watching a Mets game, watching some wrestling, or listening to metal somewhere.

As I continue this journey as a DFIR practitioner, I wanted to start capturing some of the cool things I’ve encountered to share with you all for your benefit. Feel free to contact me on LinkedIn or Twitter as I always welcome a good chat with like-minded DFIR professionals.

I currently hold a Bachelor of Science in Information Technology from New Jersey Institute of Technology (NJIT).

Below is a list of active GIAC certifications that I currently hold:

• GIAC Security Professional (GSP)
• GIAC Experienced Forensics Examiner (GX-FE)
• GIAC Enterprise Incident Responder (GEIR)
• GIAC Cloud Forensics Responder (GCFR)
• GIAC Experienced Forensics Analyst (GX-FA)
• GIAC Certified Forensic Analyst (GCFA)
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Forensic Examiner (GCFE)