Yes, You Too Can Perform Daring Acts of Live Acquisition

Explore live acquisition techniques in digital forensics through this 48-minute conference talk from BSidesLV 2015. Learn about essential definitions, free tools, and best practices for gathering digital evidence. Discover methods for memory and disk acquisition, manual analysis, and system information retrieval. Gain insights into using PowerShell tools, examining the registry, and analyzing event logs and prefetch information. Understand the importance of proper reporting and the challenges of the Observer's Paradox in forensic investigations. Equip yourself with practical knowledge to perform effective live acquisitions in various digital forensic scenarios.

Intro
Contact information
Disclaimer
Definitions
Things to Remember
Free Tools
Shut Down
Gathering Tools
Scripting
Observers Paradox
Artifacts
Gathering Memory
Disk Disk
Manual Analysis
Systems Information
PS Tools
Registry
ControlSet
Reg
Event Logs
Prefetch Information
Amazon
Reporting