* Cantinho Satkeys

Refresh History
  • JP: try65hytr Pessoal  4tj97u<z  2dgh8i k7y8j0
    14 de Julho de 2026, 05:28
  • j.s.: ghyt74 a todos
    13 de Julho de 2026, 08:29
  • cereal killa: try65hytr pessoal  r4v8p 4tj97u<z
    08 de Julho de 2026, 22:21
  • JP: dgtgtr Pessoal 4tj97u<z 2dgh8i k7y8j0 r4v8p
    07 de Julho de 2026, 18:29
  • j.s.: tenham um bom domingo  4tj97u<z
    05 de Julho de 2026, 09:39
  • j.s.: ghyt74 a todos  49E09B4F
    05 de Julho de 2026, 09:38
  • JP: try65hytr Pessoal  4tj97u<z 2dgh8i k7y8j0 r4v8p xe4s
    03 de Julho de 2026, 04:43
  • cereal killa: try65hytr pessoal,esta calor do karago  r4v8p 43e5r6
    01 de Julho de 2026, 22:01
  • j.s.: try65hytr a todos  49E09B4F
    30 de Junho de 2026, 21:02
  • JP: try65hytr Pessoal  4tj97u<z  2dgh8i k7y8j0 r4v8p
    30 de Junho de 2026, 05:31
  • JP: try65hytr Pessoal  4tj97u<z 2dgh8i k7y8j0 classic
    26 de Junho de 2026, 05:05
  • cereal killa: ghyt74 e continuaçao bom sao joao  wwd46l0'
    24 de Junho de 2026, 12:16
  • JP: try65hytr Pessoal  4tj97u<z 2dgh8i k7y8j0 xe4s
    24 de Junho de 2026, 04:05
  • FELISCUNHA: ghyt74   4tj97u<z e bom São João  h7i37
    23 de Junho de 2026, 10:55
  • j.s.: dgtgtr a todos  49E09B4F
    20 de Junho de 2026, 15:51
  • FELISCUNHA: ghyt74   49E09B4F  e bom fim de semana  4tj97u<z
    20 de Junho de 2026, 11:31
  • JP: try65hytr Pessoal  4tj97u<z 2dgh8i k7y8j0
    19 de Junho de 2026, 04:41
  • romi: Beleza
    19 de Junho de 2026, 04:28
  • cereal killa: try65hytr pessoal  2dgh8i
    18 de Junho de 2026, 23:28
  • JP: dgtgtr Pessoal  2dgh8i k7y8j0 r4v8p
    18 de Junho de 2026, 19:48

Autor Tópico: Incident Response Evidence Collection in Windows  (Lida 479 vezes)

0 Membros e 1 Visitante estão a ver este tópico.

Online mitsumi

  • Sub-Administrador
  • ****
  • Mensagens: 134536
  • Karma: +0/-0
Incident Response Evidence Collection in Windows
« em: 23 de Outubro de 2019, 14:46 »

Incident Response: Evidence Collection in Windows
.MP4, AVC, 1280x720, 30 fps | English, AAC, 2 Ch | 1h 46m | 256 MB
Instructor: Jason Dion

If your organization is the victim of a cyberattack, will you be ready to respond? An incident responder or digital forensics technician has to be prepared to properly collect digital evidence as soon as an event is reported. This course teaches you how to quickly triage affected systems, securely collect digital evidence, and create your collection report for further forensic analysis. Digital forensic examiner (DFE) Jason Dion explains how to build a portable toolkit of trusted tools, both proprietary and open source, to collect evidence from Windows machines: volatile data from workstations, non-volatile data from hard drives and USBs, and disk images. Jason also shows how to deal with encryption challenges, document your collection efforts, and build a finalized collection report.

Topics include:

Preparing for an incident response event
Installing the right tools
Acquiring volatile and non-volatile data
Acquiring memory images
Documenting users, connections, processes, and files
Collecting disk attributes
Verifying data collection
Imaging a drive
BitLocker encryption
Creating an evidence report
     

               

Download link:
Só visivel para registados e com resposta ao tópico.

Only visible to registered and with a reply to the topic.

Links are Interchangeable - No Password - Single Extraction