Rob Lee and the SANS DFIR Faculty created this handy poster full of forensic exam cheats where you can discover key items to an activity for Microsoft Windows systems for intrusions, intellectual property theft, or common cyber-crimes.  You can find the Windows Artifacts Analysis poster here.

Posted by on June 19, 2012 in Forensics - General and tagged , , , , .

1 Comment

About propellerhead23

I have been in the computer forensics field for about five years. I got my start while serving in the Army on active duty and used what I learned while deployed to Iraq. I currently hold the EnCE and ACE certifications and I am also a member of a couple of forensic professional organizations. I am working in the field and also pursuing a graduate degree in computer forensics. I enjoy what I do - mostly because there's always something to learn and would be thrilled if what I've learned could be of use to someone within the community.

One Response »

  1. Rob says:
    June 20, 2012 at 09:32

    Great catch!.. Rob Lee and the Sans folks put out some very nice tools and educational materials. I may look into getting this printed poster size..!! Thanks! Rob

    Reply

Do you haves something to say?

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s