Products
-
Investigating Windows Scheduled Tasks
CourseLearn how to parse Windows Scheduled Tasks artifacts using hands-on virtual labs. Understand task formats, registry and XML artifacts, and how to uncover forensic evidence from scheduled jobs. Free foundational training for DFIR investigators.
Free
-
Windows Event Logs
Course5.0 average rating (1 review)Learn how to extract, analyze, and interpret Windows Event Logs using real-world forensic techniques. Dive into Event Viewer artifacts, log types, policy auditing, and extraction methods through guided virtual labs. Ideal for DFIR and SOC analysts.
$50
-
BSides Amman 2021 Windows Forensics Workshop
CourseIn this workshop we will be investigating a policy violation case, where we go over different Windows artifacts that will help solve the case.
Free