Students will use a couple of the popular Sysinternals Suite tools to observe configuration changes on a known good/clean system. The scenario will have them perform a running system snapshot using Regshot, TCPView, ListDLLs, Process Explorer and Process Monitor prior to executing a suspicious program. After execution, they will run the same tools, compare the results and note any differences. This lab fosters tool familiarization and will provide an "under the hood" perspective of a running Windows environment.

Delivered By


CYBRScore is a premium, performance-based cyber skills training and assessment provider that quantifies a user's ability to defend a network. Leveraging the NICE framework, CYBRScore creates the complete end-to-end experience, delivering targeted, outcome-oriented cyber security training experiences that provide users with confidence to get the job done.

In a world of recognized certifications and written knowledge-based exams, our solutions stand out by providing real insight into actual on-ground cyber security skills, and the capability to support your knowledge base with demonstrated network defense skills. Headquartered in Annapolis, Maryland, CYBRScore's offerings include turnkey and custom training, hands-on labs, and performance assessment for individual skill set and defined job-role competencies.



Subscribe to become an Insider Pro and get access to this app as well as:

Unlimited access to 700+ apps, including virtual labs, practice tests, capture-the-flag challenges, and more
Industry certification preparation
Guided Mentor
Premium support