Home / Cybersecurity Summer BootCamp / Sbc2021 / Programme / DFIR on Windows: What do I extract?

DFIR on Windows: What do I extract?

Posted on 06/14/2021
  • Speaker: Lorenzo Martínez Rodríguez
  • Topic: Digital Forensics and Incident Response (DFIR).
  • Content of the workshop:
    • Security incidents.
    • Live response vs. post-mortem.
    • Types of forensic artefacts: user, system and file system.
    • Triage with Wintriage!
    • Artifact analysis in Windows: Registry, Trash, Navigation and MFT.
       
English
Lugar de celebración: 
Categoría: 
Turno: 
Tarde
Hora: 
16:00
Duración: 
3h