BloomTech’s Downfall: A Long Time Coming

Forensicating Windows Artifacts - Investigation Without Event Logs

Forensicating Windows Artifacts - Investigation Without Event Logs

Security BSides London via YouTube Direct link

Intro

1 of 10
Next

1 of 10

Intro

Class Central Classrooms beta

YouTube playlists curated by Class Central.

Classroom Contents

Forensicating Windows Artifacts - Investigation Without Event Logs

Automatically move to the next video in the Classroom when playback concludes
  1. 1 Intro
  2. 2 Agenda: Windows Artifacts
  3. 3 Windows Artifacts!!
  4. 4 Prefetch: WinPrefetchView
  5. 5 Thumbcache (thumbs.db)
  6. 6 Shell Bag
  7. 7 Jump List: App IDs
  8. 8 Jumplist: Example
  9. 9 Windows Registry
  10. 10 THANK YOU FOR LISTENING.

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.