DriveFS Sleuth: Open-source tool for investigating Google Drive File Stream’s disk forensic arti…

DriveFS Sleuth: Open-source tool for investigating Google Drive File Stream’s disk forensic arti…>
Help Net Security – Mirko Zorz
DriveFS Sleuth is an open-source tool designed to automate the investigation of Google Drive File Stream disk artifacts.
It offers the capability to analyze disk artifacts and construct a structured filesystem tree, providing a comprehensive list of synchronized files along with their associated properties.
This tool becomes valuable in identifying unauthorized usage of Google Drive File Stream, particularly in threat-hunting activities related to file-syncing application misuse within a network.
Despite the collaborative benefits of such tools, they pose potential security risks.
You can find more details about DriveFS Sleuth in the full article from Help Net Security.
Link: https://www.helpnetsecurity.com/2024/01/04/drivefs-sleuth-investigating-google-drive-file-stream/


Categories:

Tags: