Johan Berggren (Digital Forensics, Google)
Johan Berggren is a staff security engineer at Google with 25 years of experience in information security, incident response and digital forensics. Between responding to incidents he develops Open Source DFIR software such as the OpenRelik Platform and Timesketch, the timeline analysis tool.

Sessions
07-01
15:55
35min
OpenRelik: a containerized incident response processing pipeline
Thomas Chopitea (Digital Forensics, Google), Johan Berggren (Digital Forensics, Google)
OpenRelik is a new decentralized, distributed, containerized incident response forensic artifact processing pipeline. We’ll talk about the main goal behind the project and its architecture, but also lessons we’ve learned from past attempts at building this, and how we’ve solved them this time around. Demos included!
DFIR & ThreatIntel
Amphitheater 122