Completed
Investigation: Activity
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Investigating Malware Using Registry Forensics
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Outline
- 3 Why the Registry?
- 4 The Windows Registry
- 5 Progression of the Registry
- 6 Registry Terminology
- 7 Primary Hives Comprising the Registry
- 8 What can Registry Analysis Help Answer?
- 9 Detection: MuiCache
- 10 Detection: AppCompatCache
- 11 AppCompatCache Volatility Plugin
- 12 Detection: Amcache.hve
- 13 Amcache.hve Data
- 14 Detection: UserAssist
- 15 Detection: Recent Apps
- 16 Persistence
- 17 More Fun: Unicode RLO Character
- 18 More Fun: Large Registry Values
- 19 Investigation: Shellbags
- 20 Investigation: Activity
- 21 Conclusion