CSOonline

How Windows admins can get started with computer forensics

Analyzing forensics logs requires a unique approach. Here are the basics of what you need to know and the tools to use. The recent cybersecurity symposium that aimed to “prove” the 2020 US election ...
JD Supra

Valuable Windows 10 Artifacts and Evolving Digital Forensic Techniques

Every version of Microsoft Windows brings along improvements in speed, performance, and visuals. Additional “under the hood” elements continue to be introduced that assist in digital forensic ...
Network World

Using logs for forensics after a data breach

Despite the best precautions, it is impossible to protect your network against every attack. When the inevitable happens, your log data can be critical for identifying the cause of the breach and ...
Bleeping Computer

New Chainsaw tool helps IR teams analyze Windows event logs

Incident responders and blue teams have a new tool called Chainsaw that speeds up searching through Windows event log records to identify threats. The tool is designed to assist in the first-response ...
Retail Focus

How Forensic Investigation Techniques Help Solve Cybercrime Cases

Cybercrime investigations rarely hinge on a single smoking gun. More often, they’re solved by patiently assembling dozens of ...
Computer Weekly

Windows registry forensics guide: Investigating hacker activities

When analysing a compromised Windows system, investigators and system administrators can glean enormously useful information about attackers' actions by looking through the Windows registry, a ...