Windows Forensics - A Case Study: Part Two
By Stephen Barish
This article is the second in a two-part series that will offer a case
study of forensics in a Windows environment. This installment deals with
determining the scope of the compromise, and understanding what the
attacker is trying to accomplish at the network level. Along the way,
we'll be discussing some tools and techniques that are useful in this type
of detective work.
Windows Forensics - A Case Study: Part Two
By Stephen Barish
This article is the second in a two-part series that will offer a case
study of forensics in a Windows environment. This installment deals with
determining the scope of the compromise, and understanding what the
attacker is trying to accomplish at the network level. Along the way,
we'll be discussing some tools and techniques that are useful in this type
of detective work.
http://www.securityfocus.com/infocus/1672
Marc Fossi
Symantec Corp.
www.symantec.com
[ reply ]