As a continuation of the “Introduction to Windows Forensics” series, this video introduces Log Parser. This powerful tool from Microsoft allows forensic examiners to query text-based data such as log files, CSV files, XML files, and numerous other data sources including Active Directory and the Registry. In this video, Richard Davis will show you how Log Parser can allow forensic examiners to query numerous Windows EVTX event logs using SQL syntax:
-
50 Shades of Ransomware
Ransomware is still one of the most common types of malware deployed during cyberattacks. … -
Tools up: the best software and hardware tools for computer forensics
Igor Mikhailov is a digital forensic analyst of the digital forensic laboratory at Group-I… -
Following the RTM
Researchers became aware of the activities of the RTM group in December 2015. Since then, …
Load More Related Articles
-
-
The Five Most Dangerous New Attack Techniques and How to Counter Them
Which are the most dangerous new attack techniques? How do they work? How can you stop the… -
Visual Analysis with ProcDOT
In the new episode of “Introduction to Malware Analysis” series Richard Davis …
Load More In Videos
