DFIR Operator Series: Windows Forensics 101

Windows is the most widely used desktop operating system in the world. Gathering and understanding forensic evidence from Windows devices is critical to success in DFIR. Get hands-on and understand evidence collection from Windows machines while thinking like an investigator so you can root out adversaries in your environment.

Time
3 hours
Difficulty
Intermediate
CEU/CPE
3
Share
NEED TO TRAIN YOUR TEAM? LEARN MORE
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Sign up with Google
Sign up with Apple
Sign up with Microsoft
View all SSO options

Already have an account? Sign In »

Course Description

Windows is the most widely used desktop operating system in the world. Gathering and understanding forensic evidence from Windows devices is critical to success in DFIR. Get hands-on and understand evidence collection from Windows machines while thinking like an investigator so you can root out adversaries in your environment.

Instructed By
Marc Balingit

Marc Balingit

Security Researcher - Incident Response

Instructor
Provider
Cybrary
Certificate of Completion
Certificate Of Completion

Complete this entire course to earn a DFIR Operator Series: Windows Forensics 101 Certificate of Completion