Free

DFIR Operator Series: Windows Forensics 102

One course simply isn’t enough to cover Windows Forensics. Supercharge your Windows Forensics skills further by digging into DFIR on an enterprise scale with hundreds or thousands of endpoints, proactive threat hunting to root out adversaries, memory forensics, and more.

Start Course Subscribe for Updates Need to train your team? Learn more

Create Free Account Need to train your team? Learn more

Time

intermediate

difficulty

ceu/cpe

Course Content

Introduction to Memory Forensics

Enterprise Incident Response

Windows Artifact Analysis

Identifying Normal System Behavior

Identifying Compromised Systems and Anti-Forensics Behavior

Course Description

This course is part of a Career Path:

No items found.

Instructed by

Master Instructor

Marc Balingit

Marc has led, managed, and performed global incident response investigations focused on large-scale data breaches, system compromises, data exfiltration, ransomware, and malware outbreaks. He has worn many hats throughout his Incident Response career, including proactive and reactive services. Outside Blue Teaming, Marc is passionate about Vulnerability Research and Malware Analysis. He is a Technical SME at Cybrary, focusing on Threat Actors and Blue Teaming for course content.

Provider

Certification Body

Certificate of Completion

Complete this entire course to earn a DFIR Operator Series: Windows Forensics 102 Certificate of Completion

Page URL

Copy