Daily Archives: September 6, 2014

Jump Lists

Posted on September 6, 2014 by HatsOffSecurity

What is a Jump List? A Jump List looks something like: From left to right we have; Windows Media Player Start Menu, Wordpad Internet Explorer Jump Lists were introduced in Windows 7 to allow frequently used files/tasks/webpages to be selected … Continue reading →

Posted in Jump Lists, Windows Forensics | Tagged artefact locations, hats off security, jump lists, jumplists, recent, registry hives, windows 7, Windows Registry Forensics, Windows8 | Leave a comment

Incident Response Process Phase 3 – Containment

Posted on September 6, 2014 by HatsOffSecurity

First Steps When moving into the containment phase an incident has already been declared. It is now time to categorise the incident and relay this to the customer/management. The categorisation or characterisation of the incident can be broken down into … Continue reading →

Posted in Containment, Incident Response | Tagged basics, containment, hats off security, Incident Reponse | Leave a comment

M	T	W	T	F	S	S
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30

	Bianca the Baker on NoScript Plugin Forensic Inves…
	Week 40 – 2022… on PowerShell Basic Introduction…
	ALEX on AnyDesk Forensic Analysis and…
	Week 13 – 2022… on Improving Technical Interviews
	HatsOffSecurity on AnyDesk Forensic Analysis and…

Daily Archives: September 6, 2014

Jump Lists

Incident Response Process Phase 3 – Containment

Recent Posts

Categories

CyberLinks

Recent Posts

Recent Comments

Archives

Categories

Meta