The Windows Incident Response Blog is dedicated to the myriad information surrounding and inherent to the topics of IR and digital analysis of Windows systems. This blog provides information in support of my books; "Windows Forensic Analysis" (1st thru 4th editions), "Windows Registry Forensics",
as well as the book I co-authored with Cory Altheide, "Digital Forensics with Open Source Tools".
Tuesday, February 01, 2005
Blog topics?
Just out of curiosity, as I'm posting on topics of interest that pop up, what would you, the reader, like to see more of in this blog?
Post a comment, or drop me an email at "keydet89 at yahoo dot com".
1 comment:
Anonymous
said...
Actually, your blog has been excellent so far. While I understand the secrecy aspect, I'd be interested in a few real-life scenarios. Maybe explain what you've seen in terms of compromised systems and how you approached them (shutdown vs. live response, etc.). Kind of what Robert Hensing is doing over at his blog lately, but using tools available to the public domain...
1 comment:
Actually, your blog has been excellent so far. While I understand the secrecy aspect, I'd be interested in a few real-life scenarios. Maybe explain what you've seen in terms of compromised systems and how you approached them (shutdown vs. live response, etc.). Kind of what Robert Hensing is doing over at his blog lately, but using tools available to the public domain...
Keep up the good work!
Post a Comment