Mastering Windows Forensics empowers cybersecurity professionals and digital investigators to uncover compelling evidence on Windows systems. Curated by Grzegorz Tworek, this course delivers targeted instruction on interpreting attack vectors, enhancing forensic analysis, and strengthening endpoint defenses—making it ideal for learners eager to go beyond surface-level insights and take their forensic skills to the next level.
Syllabus
- Windows Search Artifacts
- NTFS Structures
- Disk Imaging
- Memory Dumps
- Windows Prefetch
- Hardware-Related Artifacts
- The Recycle Bin
- Log Analysis
- Windows Logging
- Internet Browser Artifacts
- SRUM Database
- Identifying Suspicious Files and Settings
- Active Directory and Its Database
- Windows Registry Analysis
- User Profile Analysis
- Managing Digital Forensics & Incident Response
- Online vs Offline Analysis
- Case Studies and Real-world Scenarios
