SDF: Memory Forensics 1
Learn Windows memory forensics
What you'll learn:
- Learn how to use Volatility
- Learn to do a fast-triage compromise assessment
- Understand plugin output for investigations
- Learn the value of Windows core processes for exams
Requirements:
- Students need PC, Mac or Linux system (virtual machine preferred)
- Willingness to learn!
Description:
*** COURSE COMPLETELY REWRITTEN AND UPDATED 2019 ***
Learn to use Volatility to conduct a fast-triage compromise assessment.
A system's memory contains an assortment of valuable forensic data. Memory forensics can uncover evidence of compromise, malware, data spoliation and an assortment of file use and knowledge evidence - valuable skills for both incident response triage work as well as in digital forensic exams involving litigation.
This class teaches students how to conduct memory forensics using Volatility.
-
Learn how to do a fast-triage compromise assessment
-
Learn how to work with raw memory images, hibernation files and VM images
-
Learn how to run and interpret plugins
-
Hands-on practicals reinforce learning
-
Learn all of this in about one hour using all freely available tools.
Who this course is for:
- Computer forensic examiners
- Computer crime investigators
- Computer security incident responders
- Security analysts
- IT professionals
- Students
Course Details:
-
2 hours on-demand video
-
5 articles
-
1 downloadable resource
-
Full lifetime access
-
Access on mobile and TV
-
Certificate of completion
![Learning To Learn [Efficient Learning]: Zero To Mastery](https://downloadfreecourse.com/uploads/images/2021/01/webp/image_380x226_6014169db4947.webp)
