Try our new Certificate Revocation List Check Tool
CRLcheck.exe is a tool developed to verify digital signatures of executable files. It collects files from known paths on your client, checks their signature, and checks Certificate Revocation Lists (CRL) and OCSP download. This helps avoid delays in launching files.
Category published:  Uncategorized   Click on the Category button to get more articles regarding that product.

SANS Poster Artifact Analysis, Windows XP/7

Posted by admin on 25.10.2012

SANS has released a genius post with a lot of Windows XP/Win7 reference and paths. For everyone who has to do with Antivirus this may be a good help.

It gives you also a good overview of Windows 7 paths and locations.

  • Index.dat
  • Sykpe History
  • Prefetch Apps
  • NLA Network Cache (See to which network the laptop had connection the last few days)
  • Flash Player Paths and Cache

https://blogs.sans.org/computer-forensics/files/2012/06/SANS-Digital-Forensics-and-Incident-Response-Poster-2012.pdf


 Category published:  Uncategorized   Click on the Category button to get more articles regarding that product.

Related Post

MS SRV Disable IPv6 the correct way CVE-2024-38063

CRL check, Zertifikatsperrlisten Software, Certificate Revocation List Check Tool zum suchen aller geblockten CRL in Firmenumgebungen, crlcheck.exe

WINSCP you cannot see the WINSCP console on a multi monitor system

Template theme: Newsup by Themeansar (External Link, you will leave www.butsch.ch).