Black Bag Training Team continues Windows Forensic Essentials Blog Series with a post about forensic examination of Windows Event Logs. They explain what event logs are, how to parse it with their tool – BlackLight®, discuss log-on events and changing the date and time.
-
Native File Format for Preservation of Cloud Emails
In this blog post Arman Gungor discusses the problem of cloud emails native file format. H… -
Digital Forensic Diaries
Digital Forensic Diaries series by Mike Sheward is available for free this week. You can g… -
Detecting Lateral Movement through Tracking Event Logs
Japan Computer Emergency Response Team Coordination Center (JPCERT/CC) presented an 80-pag…
Load More Related Articles
-
Detecting Lateral Movement through Tracking Event Logs
Japan Computer Emergency Response Team Coordination Center (JPCERT/CC) presented an 80-pag… -
An Introduction to VolUtility
Basil Alawi S.Taher has posted a nice overview of how to start using VolUtility – a … -
Volatility Memory Analysis: Building Linux Kernel Profiles
Joshua James has published a video-tutorial on how to build Linux kernel profiles for memo…
Load More In How To
