Publications
A scalable file based data store for forensic analysis, by Flavio Cruz, Andreas Moser, Michael Cohen. DFRWS 2015 Europe.
Hunting in the enterprise: Forensic triage and incident response, by Moser, Andreas, and Michael I. Cohen. Digital Investigation, 2013.
Distributed forensics and incident response in the enterprise, by M.I. Cohen, D. Bilby, G. Caronni. Digital Investigation, 2011.
Presentations
GRR Meetup: API Edition @ Nov 2015 GRR Meetup by G. Castle and M. Bushkov. Covers API basics and discusses where we are headed with API dev.
GRR Hunting Best Practices @ Oct 2015 GRR Meetup by G. Castle.
"Intro to GRR" for the Open Source Network Security Monitoring Group @ UIUC Feb 2015. Video by G. Castle
"GRR: Find all the badness, collect all the things" @ Blackhat 2014 Video by G. Castle. Also presented a 20 min version of the same talk for Hacker Hotshots.
OSDFC 2012 GRR Overview, by D. Bilby
Workshops
DFRWS US 2015 Workshop slides and scripts to setup your own workshop infrastructure by G. Castle.
DFRWS EU 2015 Workshop workshop slides by A. Moser
OSDF 2013 workshop presentation and materials by D. Bilby.
Podcasts
GRR Rapid Response on Down the Security Rabbithole Jun 2014 by G. Castle.
Whitepapers
GRR Forensic Artifacts White Paper, by G. Castle
External Presentations
These are presentations about GRR by people outside the core GRR team.
"Human Hunting" @BSidesSF 2015 by Sean Gillespie. Covers how Yahoo is using GRR. Video.
"GRR Rapid Response: Remote Live Forensics for Incident Response" @ Linux Security Summit Aug 2015 by Sean Gillespie.