Microsoft is pleased to announce the Fundamental Computer Investigation Guide for Windows, which is now available for downloading.
Best Practices and Tools for Computer Investigations
If you’re like many of our customers, you’re facing a growing problem of illegal or improper activity on your organization’s computers and networks. When investigating this activity, you may not know when to turn a case over to law enforcement. And you may not have the methods or tools at hand that you need to uncover key evidence, while protecting your organization if the case ends up in civil court.
This new guide provides you with information about the best practices and tools you need to investigate suspicious use of your organization’s computers and networks. The guide helps you determine when to turn an investigation over to law enforcement. And it provides you with guidance on how to collect, preserve, analyze, and report on key data you uncover in your investigation—using methods that will stand up in a court of law.
Developed by Microsoft security experts, partners, and customers, the guide presents a reliable, 4-step investigative process based on proven methods and tools used by the computer investigation community.
Key Questions Answered by the Guide
· Should law enforcement be brought in? If so, which agency should be contacted?
· How do I look for evidence on a hard disk image that has hundreds of thousands of files?
· How can I remotely collect data without tipping my hand?
· What investigative methods and tools should I use to protect my organization, if I expect this case to end up in court?
Learn About the Guide on TechNet
To learn more about the Fundamental Computer Investigation Guide, or to download the guide, click here.
Visit our Security Guidance Page
Interested in other Solution Accelerators for Security and Compliance? Visit Microsoft’s Security Guidance page