OS Analysis with The Sleuth Kit & Autopsy
Offered By: Pluralsight
Course Description
Overview
In this course you will learn how to parse file systems and extract forensic artifacts that can be invaluable to
incident responders, security analysts, and threat hunters.
Being able to effectively analyze digital evidence and extract indicators of compromise is incredibly important. In fact, it’s crucial to properly scoping an incident and creating robust detection logic to prevent and detect future attacks. In this course, OS Analysis with The Sleuth Kit & Autopsy, you’ll cover how to utilize Sleuth Kit and Autopsy to detect process injection and artifact obfuscation in an enterprise environment. First, you’ll demonstrate how to detect process injection techniques such as process hollowing and injection. Next, you’ll operate identifying and detecting artifact obfuscation. When you’re finished with this course, you’ll have the skills and knowledge to detect these techniques, Process Inject (T1055) and Artifact Obfuscation (T1027) using Sleuth Kit and Autopsy.
incident responders, security analysts, and threat hunters.
Being able to effectively analyze digital evidence and extract indicators of compromise is incredibly important. In fact, it’s crucial to properly scoping an incident and creating robust detection logic to prevent and detect future attacks. In this course, OS Analysis with The Sleuth Kit & Autopsy, you’ll cover how to utilize Sleuth Kit and Autopsy to detect process injection and artifact obfuscation in an enterprise environment. First, you’ll demonstrate how to detect process injection techniques such as process hollowing and injection. Next, you’ll operate identifying and detecting artifact obfuscation. When you’re finished with this course, you’ll have the skills and knowledge to detect these techniques, Process Inject (T1055) and Artifact Obfuscation (T1027) using Sleuth Kit and Autopsy.
Syllabus
- Course Overview 1min
- OS Analysis with Sleuth Kit and Autopsy 13mins
- Resources 1min
Taught by
Ashley Pearson
Related Courses
AWS Security Fundamentals (Second Edition) (French)Amazon Web Services via AWS Skill Builder AWS Security Fundamentals (Second Edition) (Japanese)
Amazon Web Services via AWS Skill Builder AWS Security Fundamentals (Second Edition) (Spanish)
Amazon Web Services via AWS Skill Builder AWS Security Fundamentals (Second Edition) (Traditional Chinese)
Amazon Web Services via AWS Skill Builder Basics of Amazon Detective (French)
Amazon Web Services via AWS Skill Builder