log2timeline Since 2009 - SANS
12.07.2013 Views
Share Embed Flag

log2timeline Since 2009 - SANS

log2timeline Since 2009 - SANS

log2timeline Since 2009 - SANS

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
computer.forensics.sans.org

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

<strong>SANS</strong> 2011 Digital Forensics and Incident Response Summit<br />

The old method<br />

timescanner z ZONE d MNTPOINT w BODYFILE<br />

fls r m C: IMAGE >> BODYFILE<br />

regtime.pl m HKLM-SYSTEM r<br />

MNTPOINT/WINDOWS/System32/config/system >> BODYFILE<br />

regtime.pl m HKLM-SAM r<br />

MNTPOINT/WINDOWS/System32/config/SAM>> BODYFILE<br />

regtime.pl m HKLM-SECURITYr<br />

MNTPOINT/WINDOWS/System32/config/SECURITY >> BODYFILE<br />

regtime.pl m HKLM-SOFTWAREr<br />

MNTPOINT/WINDOWS/System32/config/software >> BODYFILE<br />

mactime d b BODYYFILE z ZONE DATE_RANGE > CSVFILE

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!