CSOonline

How Windows admins can get started with computer forensics

Analyzing forensics logs requires a unique approach. Here are the basics of what you need to know and the tools to use. The recent cybersecurity symposium that aimed to “prove” the 2020 US election ...
JD Supra

Valuable Windows 10 Artifacts and Evolving Digital Forensic Techniques

Every version of Microsoft Windows brings along improvements in speed, performance, and visuals. Additional “under the hood” elements continue to be introduced that assist in digital forensic ...
Network World

Using logs for forensics after a data breach

Despite the best precautions, it is impossible to protect your network against every attack. When the inevitable happens, your log data can be critical for identifying the cause of the breach and ...
Bleeping Computer

New Chainsaw tool helps IR teams analyze Windows event logs

Incident responders and blue teams have a new tool called Chainsaw that speeds up searching through Windows event log records to identify threats. The tool is designed to assist in the first-response ...
CSOonline

How to optimize Windows event logging to better investigate attacks

The default event logging in Windows 10 won't give you enough information to properly conduct intrusion forensics. These settings and tools will help you collect the needed log data. After a ...
TWCN Tech News

Free Computer Forensics software for Windows PC

Computer Forensics means examining computers for traces of data that might solve a problem – be it legal or work-related, or personal use. While the term computer forensics conjures images of ...