{"id":60121,"date":"2025-09-05T08:05:00","date_gmt":"2025-09-05T06:05:00","guid":{"rendered":"https:\/\/www.secuinfra.com\/?p=60121"},"modified":"2025-09-03T12:22:17","modified_gmt":"2025-09-03T10:22:17","slug":"bsides-frankfurt-2025-erfolgreicher-dfir-workshop-von-secuinfra-mit-realistischem-angriffsszenario","status":"publish","type":"post","link":"https:\/\/www.secuinfra.com\/de\/news\/bsides-frankfurt-2025-erfolgreicher-dfir-workshop-von-secuinfra-mit-realistischem-angriffsszenario\/","title":{"rendered":"Hands-on Incident Response: So lief unser DFIR-Workshop bei der BSides Frankfurt 2025"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-flat ez-toc-counter ez-toc-white ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">[inhalt_uebersetzt]<\/p>\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.secuinfra.com\/de\/news\/bsides-frankfurt-2025-erfolgreicher-dfir-workshop-von-secuinfra-mit-realistischem-angriffsszenario\/#Cyberangriff_erkennen_verstehen_auswerten_%E2%80%93_DFIR-Training_a_la_SECUINFRA\" >Cyberangriff erkennen, verstehen, auswerten \u2013 DFIR-Training \u00e0 la SECUINFRA<\/a><\/li><\/ul><\/nav><\/div>\n\n<p class=\"wp-block-paragraph\">Am vergangenen Freitag, den 29. August 2025, \u00f6ffnete unser Frankfurter B\u00fcro seine T\u00fcren f\u00fcr einen hochkar\u00e4tigen <strong>DFIR-Workshop (Digital Forensics and Incident Response)<\/strong> im Rahmen der diesj\u00e4hrigen <strong>BSides Frankfurt<\/strong> \u2013 und wurde zum Treffpunkt f\u00fcr Cyber-Security-Enthusiasten, die ihr Wissen praxisnah vertiefen wollten.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Mit <strong>11 Teilnehmenden<\/strong> \u2013 offiziell ausgebucht bei 10 verf\u00fcgbaren Pl\u00e4tzen \u2013 war der Workshop nicht nur ein voller Erfolg, sondern auch ein deutliches Zeichen daf\u00fcr, wie gro\u00df das Interesse an praxisorientierter IT-Forensik und Incident Response ist.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Cyberangriff_erkennen_verstehen_auswerten_%E2%80%93_DFIR-Training_a_la_SECUINFRA\"><\/span><strong>Cyberangriff erkennen, verstehen, auswerten \u2013 DFIR-Training \u00e0 la SECUINFRA<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">In der ersten Workshop-H\u00e4lfte f\u00fchrte Felix, einer unserer erfahrenen DFIR-Experten, die Teilnehmenden durch die <strong>theoretischen Grundlagen digitaler Forensik<\/strong>. Thematisiert wurden u.\u202fa. das strukturierte Vorgehen bei Vorf\u00e4llen, relevante Datenquellen, typische Artefakte sowie Methoden zur Auswertung. Selbst f\u00fcr erfahrene <strong>IT-Sicherheitsprofis<\/strong> bot die Pr\u00e4sentation zahlreiche neue Impulse, Hintergrundwissen und Best Practices.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Im zweiten Teil wurde es hands-on: Jeder Teilnehmer bekam eine eigene Analyseumgebung zur Verf\u00fcgung gestellt, in der ein zuvor konstruiertes <strong>realistisches Angriffsszenario<\/strong> forensisch untersucht werden musste. Unterst\u00fctzt von Christian Z\u00fclch, der in die Rolle des \u201eAngreifers\u201c schl\u00fcpfte, wurde gemeinsam erarbeitet, <strong>wie der Angriff stattgefunden hat, wie sich der Angreifer im System bewegt und Persistenz aufgebaut hat<\/strong>. Die Auswertungen der Teilnehmenden wurden diskutiert, mit der Musterl\u00f6sung verglichen und durch wertvolle Tipps &amp; Tricks rund um Tools und Analysetechniken erg\u00e4nzt.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Unser Fazit:<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Ein rundum gelungener Nachmittag voller Wissen, Praxis und Austausch \u2013 so l\u00e4sst sich unser DFIR-Workshop im Rahmen der BSides Frankfurt 2025 zusammenfassen. Wir bedanken uns herzlich bei allen Teilnehmenden f\u00fcr das gro\u00dfe Interesse und die aktive Mitarbeit. Ein besonderer Dank geht an Felix R., Christian Z., Eduard und Christina L., die mit ihrem Einsatz den Workshop zu dem gemacht haben, was er war: <strong>Ein echtes Highlight f\u00fcr alle, die Cyber Defense leben<\/strong>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Wir freuen uns schon jetzt auf die n\u00e4chste Runde!<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-1 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0205-2-scaled.jpg\"><img fetchpriority=\"high\" decoding=\"async\" width=\"1600\" height=\"1200\" data-id=\"60192\" src=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0205-2-1600x1200.jpg\" alt=\"\" class=\"wp-image-60192\" srcset=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0205-2-1600x1200.jpg 1600w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0205-2-800x600.jpg 800w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0205-2-768x576.jpg 768w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0205-2-1536x1152.jpg 1536w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0205-2-2048x1536.jpg 2048w\" sizes=\"(max-width: 1600px) 100vw, 1600px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0017-1-scaled.jpeg\"><img decoding=\"async\" width=\"1600\" height=\"1200\" data-id=\"60176\" src=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0017-1-1600x1200.jpeg\" alt=\"\" class=\"wp-image-60176\" srcset=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0017-1-1600x1200.jpeg 1600w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0017-1-800x600.jpeg 800w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0017-1-768x576.jpeg 768w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0017-1-1536x1152.jpeg 1536w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0017-1-2048x1536.jpeg 2048w\" sizes=\"(max-width: 1600px) 100vw, 1600px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3927-1-scaled.jpg\"><img decoding=\"async\" width=\"1600\" height=\"1200\" data-id=\"60202\" src=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3927-1-1600x1200.jpg\" alt=\"\" class=\"wp-image-60202\" srcset=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3927-1-1600x1200.jpg 1600w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3927-1-800x600.jpg 800w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3927-1-768x576.jpg 768w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3927-1-1536x1152.jpg 1536w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3927-1-2048x1536.jpg 2048w\" sizes=\"(max-width: 1600px) 100vw, 1600px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0019-7-scaled.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1600\" height=\"1200\" data-id=\"60180\" src=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0019-7-1600x1200.jpg\" alt=\"\" class=\"wp-image-60180\" srcset=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0019-7-1600x1200.jpg 1600w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0019-7-800x600.jpg 800w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0019-7-768x576.jpg 768w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0019-7-1536x1152.jpg 1536w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0019-7-2048x1536.jpg 2048w\" sizes=\"(max-width: 1600px) 100vw, 1600px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0202-1-scaled.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1600\" height=\"1200\" data-id=\"60190\" src=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0202-1-1600x1200.jpg\" alt=\"\" class=\"wp-image-60190\" srcset=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0202-1-1600x1200.jpg 1600w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0202-1-800x600.jpg 800w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0202-1-768x576.jpg 768w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0202-1-1536x1152.jpg 1536w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0202-1-2048x1536.jpg 2048w\" sizes=\"(max-width: 1600px) 100vw, 1600px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3928-1-scaled.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1600\" height=\"1200\" data-id=\"60204\" src=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3928-1-1600x1200.jpg\" alt=\"\" class=\"wp-image-60204\" srcset=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3928-1-1600x1200.jpg 1600w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3928-1-800x600.jpg 800w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3928-1-768x576.jpg 768w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3928-1-1536x1152.jpg 1536w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3928-1-2048x1536.jpg 2048w\" sizes=\"(max-width: 1600px) 100vw, 1600px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0206-2-scaled.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1600\" height=\"1200\" data-id=\"60194\" src=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0206-2-1600x1200.jpg\" alt=\"\" class=\"wp-image-60194\" srcset=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0206-2-1600x1200.jpg 1600w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0206-2-800x600.jpg 800w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0206-2-768x576.jpg 768w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0206-2-1536x1152.jpg 1536w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0206-2-2048x1536.jpg 2048w\" sizes=\"(max-width: 1600px) 100vw, 1600px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3931-1.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1600\" height=\"1200\" data-id=\"60210\" src=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3931-1-1600x1200.jpg\" alt=\"\" class=\"wp-image-60210\" srcset=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3931-1-1600x1200.jpg 1600w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3931-1-800x600.jpg 800w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3931-1-768x576.jpg 768w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3931-1-1536x1152.jpg 1536w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_3931-1.jpg 2016w\" sizes=\"(max-width: 1600px) 100vw, 1600px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0209-1-scaled.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1600\" height=\"1200\" data-id=\"60200\" src=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0209-1-1600x1200.jpg\" alt=\"\" class=\"wp-image-60200\" srcset=\"https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0209-1-1600x1200.jpg 1600w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0209-1-800x600.jpg 800w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0209-1-768x576.jpg 768w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0209-1-1536x1152.jpg 1536w, https:\/\/www.secuinfra.com\/wp-content\/uploads\/IMG_0209-1-2048x1536.jpg 2048w\" sizes=\"(max-width: 1600px) 100vw, 1600px\" \/><\/a><\/figure>\n<\/figure>\n","protected":false},"excerpt":{"rendered":"<p>Am vergangenen Freitag, den 29. August 2025, \u00f6ffnete unser Frankfurter B\u00fcro seine T\u00fcren f\u00fcr einen hochkar\u00e4tigen DFIR-Workshop (Digital Forensics and Incident Response) im Rahmen der diesj\u00e4hrigen BSides Frankfurt \u2013 und wurde zum Treffpunkt f\u00fcr Cyber-Security-Enthusiasten, die ihr Wissen praxisnah vertiefen wollten.<\/p>\n","protected":false},"author":33,"featured_media":60164,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[356],"dpc_coauthors":[],"class_list":["post-60121","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-cybersecurity-trends"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/posts\/60121","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/users\/33"}],"replies":[{"embeddable":true,"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/comments?post=60121"}],"version-history":[{"count":2,"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/posts\/60121\/revisions"}],"predecessor-version":[{"id":60217,"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/posts\/60121\/revisions\/60217"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/media\/60164"}],"wp:attachment":[{"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/media?parent=60121"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/categories?post=60121"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/tags?post=60121"},{"taxonomy":"dpc_coauthors","embeddable":true,"href":"https:\/\/www.secuinfra.com\/de\/wp-json\/wp\/v2\/dpc_coauthors?post=60121"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}