JD Supra

Valuable Windows 10 Artifacts and Evolving Digital Forensic Techniques

Every version of Microsoft Windows brings along improvements in speed, performance, and visuals. Additional “under the hood” elements continue to be introduced that assist in digital forensic ...
CSOonline

How Windows admins can get started with computer forensics

Analyzing forensics logs requires a unique approach. Here are the basics of what you need to know and the tools to use. The recent cybersecurity symposium that aimed to “prove” the 2020 US election ...
CSOonline

How to optimize Windows event logging to better investigate attacks

The default event logging in Windows 10 won't give you enough information to properly conduct intrusion forensics. These settings and tools will help you collect the needed log data. After a ...
TWCN Tech News

Free Computer Forensics software for Windows PC

Computer Forensics means examining computers for traces of data that might solve a problem – be it legal or work-related, or personal use. While the term computer forensics conjures images of ...
Computer Weekly

Windows registry forensics guide: Investigating hacker activities

When analysing a compromised Windows system, investigators and system administrators can glean enormously useful information about attackers' actions by looking through the Windows registry, a ...
TWCN Tech News

How to read Windows Update log in Windows 11/10

Windows Update uses Event Tracing for Windows (ETW) to generate diagnostic logs in Windows 11/10, and save them in the .etl file format. The reason why this has been done is that it reduces disk space ...