![]() Not quite sure that is the case.įor the technicals, please see the following posts. Somehow that is seen as less of a threat-vector. Turns out that the latest version of Windows 7 RC will now no longer auto-play (most) removable media such as USB drives. Windows 7 will bring a new security “feature”. Read Harlan’s post, view the presentation, then check the comments section on his post for some additional thoughts I left and others have responded to. ![]() I’m also interested in how the new Windows 7 XPM mode virtualization will come into play both from a forensics perspective as well as incident response. However, from the sysadmin perspective, I really found great value in Diane Barrett’s presentation on Virtual Traces, Being interested in local-system usage of virtualization (Virtual PC, VirtualBox, VMWare, etc.) it had a lot of great material. Links are a-plenty on forensics and incident response presentations and papers. #JADSOFTWARE INTERNET EVIDENCE FINDER 3.5.1 INCL CRACK [VOKEON] FULL#Harlan then dropped this Windows Incident Response: e-Evidence updates post all full of goodies! Harlan’s post has some great positive feedback on it so I’m looking forward to the report results. I’ve “registered” and downloaded it but haven’t had a chance to toss it at a system where I know Facebook usage is present. Given the proliferation of these type of social networking sites as well as a workplace with many users dependent on them for socializing (or other things…) having a tool geared for searching a system for usage is quite handy. Internet Evidence Finder – JADSoftware – Free tool that “…searches for Facebook chat messages and page fragments, Yahoo chat, and MSN chat messages on drives and within memory dumps”. ![]() Harlan’s Windows Incident Response blog post Windows Incident Response: Tools contained a nice shout-out (Cheers!) as well as introduction to a neat new tool (to me). Some interesting bits these past weeks on the Windows security front. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |