Instituto Nacional de ciberseguridad. Sección Incibe

Go to Calendar     Go to Press Room     Go to Newsletters subscription

Search

DFIR on Windows: What do I extract?

Webinar
3h
Monday 19 July 15:45 - Monday 19 July 18:45
CATEGORY
Operaciones CSIRTs
LANGUAGE
Castellano
  • Speaker: Lorenzo Martínez Rodríguez
  • Topic: Digital Forensics and Incident Response (DFIR).
  • Content of the workshop:
    • Security incidents.
    • Live response vs. post-mortem.
    • Types of forensic artefacts: user, system and file system.
    • Triage with Wintriage!
    • Artifact analysis in Windows: Registry, Trash, Navigation and MFT.