Completed
Intro
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Investigating Malware Using Registry Forensics
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Outline
- 3 Why the Registry?
- 4 The Windows Registry
- 5 Progression of the Registry
- 6 Registry Terminology
- 7 Primary Hives Comprising the Registry
- 8 What can Registry Analysis Help Answer?
- 9 Detection: MuiCache
- 10 Detection: AppCompatCache
- 11 AppCompatCache Volatility Plugin
- 12 Detection: Amcache.hve
- 13 Amcache.hve Data
- 14 Detection: UserAssist
- 15 Detection: Recent Apps
- 16 Persistence
- 17 More Fun: Unicode RLO Character
- 18 More Fun: Large Registry Values
- 19 Investigation: Shellbags
- 20 Investigation: Activity
- 21 Conclusion