You need to know basic information about processes, services and handles.ĭownload Free Introductory Materials PDF -> The instructor will provide the VMs and make sure you are prepared to handle them safely. NOTE: This course will focus on the practical application of Sysinternals, and therefore infected virtual machines will be used for labs in this training. You just need to download Sysinternals suite and use the virtual machine provided by the instructor. The Sysinternals suite has a plethora of tools and we need to know how to use them.
You will learn how to use Sysinternals tools in a forensics perspective. The course contains video and text materials, accompanied by practical labs and exercises.We designed the course so that a diligent student will need about 18 hours of work to complete the training.There are no deadlines, except for the ones you set for yourself.Once you’re in, you keep access forever, even when you finish the course.The course is self-paced – you can visit the training whenever you want and your content will be there.To circumvent this situation, tools are developed with the ability to evaluate a system at the time of infection. A considerable part of a live forensic investigation works with images extracted from RAM, but in that sense, we do not have a form of analysis in which we can analyze the moment at which malware infects a system process.
Tools are developed for this type of approach. The access to this course is restricted to eForensics Premium or IT Pack Premium Subscriptionįorensics Live Analysis has a great contribution to understanding how a malicious process works on an infected host.
0 kommentar(er)
