Normally this is a good thing, however, many of the things that Windows does for your convenience can at best be an annoyance to your forensics workflow and at worst actually alter your evidence calling into question its integrity. But, I do recognize that out of the box Windows systems are not the most forensically sound environment - they love to automount drives, index files, and basically try to make your life easy. I understand that this statement will probably come with the requisite beatings, but I honestly enjoy using Windows on a day to day basis more than other operating systems and am willing to take whatever flack comes my way over it (and yes, my team at work loves to give me grief for it). Immediately apply the skills and techniques learned in SANS courses, ranges, and summits
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |