Microsoft Switzerland Security Blog

Security informations brought to you by the Swiss Security Team.

Blogs

Forensic Analysis of the Windows Registry

  • Comments 1
  • Likes

Windows registry contains lots of information that are of potential evidential value or helpful in aiding forensic examiners on other aspects of forensic analysis. This paper discusses the basics of Windows XP registry and its structure, data hiding techniques in registry, and analysis on potential Windows XP registry entries that are of forensic values.

http://www.forensicfocus.com/forensic-analysis-windows-registry

Urs

 

Comments
Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment