As a continuation of the “Introduction to Windows Forensics” series, this video introduces Log Parser. This powerful tool from Microsoft allows forensic examiners to query text-based data such as log files, CSV files, XML files, and numerous other data sources including Active Directory and the Registry. In this video, Richard Davis will show you how Log Parser can allow forensic examiners to query numerous Windows EVTX event logs using SQL syntax:
-
Office365 Log Analysis Framework
After yesterday’s webcast Matt Bromiley released his Office365 Log Analysis Framewor… -
Detecting Malicious PowerShell Commands using Deep Neural Networks
Microsoft’s PowerShell is a command-line shell and scripting language that is instal… -
No Tool Fits All – Why Building a Solid Toolbox Matters
In the world of forensics, mobile device investigations could be the most complicated of a…
Load More Related Articles
-
No Tool Fits All – Why Building a Solid Toolbox Matters
In the world of forensics, mobile device investigations could be the most complicated of a… -
Security Event Logging and Monitoring Techniques for Incident Response in Hadoop
This presentation will share some of the techniques and lessons learned in real-world Hado… -
Smart Car Forensics and Vehicle Weaponization
Given a relatively new car with an infotainment system completely decoupled from the car&#…
Load More In Videos
