Home Webinars Detection of Backdating the System Clock in Windows
Webinars

Detection of Backdating the System Clock in Windows

Posted on July 24, 2017
7
0
2,928

SANS Institute has published a whitepaper by Xiaoxi Fan titled “Detection of Backdating the System Clock in Windows”. This paper presents three categories of related objects, showing how they work together in detecting system clock backdating: (1) system artifacts (e.g. Windows event log, $MFT, $Logfile, $UsnJrnl, Volume Shadow Copy, $STDINFO and $FILENAME timestamps, and Windows update logs); (2) application artifacts (e.g. antivirus update log and cloud storage sync log); and (3) Internet artifacts (e.g. Internet history and email). The paper intends to put together these artifacts and serve as a reference for investigators to detect system clock backdating.

Load More Related Articles
Load More In Webinars
7 Comments

7 Comments

  1. 2barrack

    December 30, 2021 at 11:33 pm

    2correlation

  2. 2joyance

    January 13, 2022 at 1:21 am

    3cosmetic

  3. vietnam gay chat

    January 14, 2022 at 11:13 am

    gay chat for windows https://bjsgaychatroom.info/

  4. joomla gay dating theme

    January 14, 2022 at 2:04 pm

    gay boys in tampa fl dating https://gaypridee.com/

  5. free gay chat roulette

    January 14, 2022 at 7:06 pm

    gay chat websites https://gaytgpost.com/

  6. best gay chat

    January 14, 2022 at 8:51 pm

    asain gay chat phone lines https://gay-buddies.com/

  7. college gay dating site

    January 15, 2022 at 8:50 pm

    free gay dating in phoenix https://speedgaydate.com/