Overview
In this lab, you will learn how to search through a forensic disk image in dd format to find artifacts related to an intrusion on a Windows client machine. Windows’ client machines tend to be a large target for hackers because end users, who may lack knowledge of computer security, can download malicious files or open malicious attachments. Some of the relevant forensic artifacts from a Windows server include Windows event log files, event viewer files, and registry entries.
![](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/6468eaea602fea5f5ca72951_Forensic_Analysis_of_a_Windows_10_Client.jpeg)
Learning Partner
![Infosec Learning](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/647452bb8f7e2196a152921c_INFOSEC-final-logo-CMYK.png)
Infosec Learning
Infosec Learning provides businesses, colleges, governments, and K-12 school districts a feature rich information technology training and skill assessment service via an advanced, cloud based, virtual machine powered platform, capable of significant customization with unlimited scale and growth potential.