|
(W00) Course Instructions |
|
00:00:00 |
Introductory Materials |
|
(W26M01) General course instructions (please read carefully) |
|
00:00:00 |
|
(W26M02) Software used in this course |
|
00:00:00 |
|
(W26M03) Sysinternals Tools |
|
00:00:00 |
|
(W26M04) Sysinternals Tools |
|
00:00:00 |
|
(W26M05) Sysinternals and an incident response scenario |
|
00:00:00 |
|
(W26M06) A Sysinternals tool usage in forensics scenario |
|
00:00:00 |
|
(W26M07) Windows 10 |
|
00:00:00 |
|
(W26M08) Windows 10 Credential Guard |
|
00:00:00 |
Module 1 |
|
(W26M09) Windows 10 Process Explorer 1 - Video Lecture |
|
00:00:00 |
|
(W26M10) Windows 10 Process Explorer 2 - Video Lecture |
|
00:00:00 |
|
(W26M11) Sigcheck - Video Lecture |
|
00:00:00 |
|
(W26M12) Process Explorer Exercise |
|
00:00:00 |
|
(W26A01) Module 1 Lab 1: Using Process Explorer to analyze a Windows 10 host |
30, 00:00 |
|
(W26A02) Module 1 Lab 2: Auditing unsigned processes |
30, 00:00 |
|
(W26A03) Module 1 Lab 3: Dumping unsigned processes |
30, 00:00 |
|
(W26A04) Module 1 Lab 4: Using Process Explorer to analyze a packed image |
30, 00:00 |
|
(W26A05) Module 1 Lab 5: Using Procdump to dump a process |
30, 00:00 |
|
(W26M18) Module 1 Forum discussion |
|
00:00:00 |
Module 2 |
|
(W26A06) Module 2 Lab 1 - Windows XP I |
30, 00:00 |
|
(W26A07) Module 2 Lab 2 – Windows XP II |
30, 00:00 |
|
(W26A08) Module 2 Lab 3 – Windows 7 |
30, 00:00 |
|
(W26A09) Module 2 Lab 4 - Windows 10 |
30, 00:00 |
Module 3 |
|
(W26M23) Module 3 Lecture |
|
00:00:00 |
|
(W26M24) Module 3 Sysmon Lecture I |
|
00:00:00 |
|
(W26M25) Module 3 Sysmon Lecture II |
|
00:00:00 |
|
(W26A10) Module 3 Lab |
30, 00:00 |
Module 4 |
|
(W26A11) Final Lab - Part I |
30, 00:00 |
|
(W26A12) Final Lab - Part II |
30, 00:00 |
|
(W26A13) Final Lab - Part III |
30, 00:00 |
|
(W26Q01) Windows 10 Live Analysis with Sysinternals Final Exam |
|
00:15:00 |