Welcome to Mobilarian Forum - Official Symbianize forum.

[predium]

Incident Response: Evidence Collection in Windows
MP4 | Video: AVC, 1280x720 15 fps | Audio: AAC, 48 KHz, 2 Ch | Duration: 1h 46m
Skill Level: Advanced | Genre: eLearning | Language: English + Subtitles | Size: 256 MB​

If your organization is the victim of a cyberattack, will you be ready to respond? An incident responder or digital forensics technician has to be prepared to properly collect digital evidence as soon as an event is reported. This course teaches you how to quickly triage affected systems, securely collect digital evidence, and create your collection report for further forensic analysis. Digital forensic examiner (DFE) Jason Dion explains how to build a portable toolkit of trusted tools, both proprietary and open source, to collect evidence from Windows machines: volatile data from workstations, non-volatile data from hard drives and USBs, and disk images. Jason also shows how to deal with encryption challenges, document your collection efforts, and build a finalized collection report.

Topics include

Preparing for an incident response event
Installing the right tools
Acquiring volatile and non-volatile data
Acquiring memory images
Documenting users, connections, processes, and files
Collecting disk attributes
Verifying data collection
Imaging a drive
BitLocker encryption
Creating an evidence report

Homepage

Please, Log in or Register to view codes content!

To view the content, you need to Sign In or Register.

 

[KatzSec DevOps]

predium salamat sa pag contribute. Next time always upload your files sa

Please, Log in or Register to view URLs content!

para siguradong di ma dedeadlink. Let's keep on sharing to keep our community running for good. This community is built for you and everyone to share freely. Let's invite more contributors para mabalik natin sigla ng Mobilarian at tuloy ang puyatan.