Beyond Windows Forensics with Built-in Microsoft Tooling

Explore advanced Windows forensics techniques using native Microsoft tools in this comprehensive 53-minute conference talk. Delve into powerful built-in utilities that go beyond traditional forensic methods, enhancing your ability to investigate and analyze Windows systems. Learn how to leverage these often-overlooked tools to uncover hidden evidence, track user activities, and reconstruct system events with greater precision. Gain valuable insights into maximizing the potential of Microsoft's integrated toolset for more effective and efficient digital forensic investigations.

TR19: Beyond Windows Forensics with Built-in Microsoft Tooling