No products in the cart.
LOGIN / SIGN UP

Home
Blog
Windows Process Internals: A few Concepts to know before jumping on Memory Forensics [Part 5] – A Journey in to the Undocumented Process Handle Structures (_handle_table & _handle_table_entry) | By Kirtar Oza

Windows Process Internals: A few Concepts to know before jumping on Memory Forensics [Part 5] – A Journey in to the Undocumented Process Handle Structures (_handle_table & _handle_table_entry) | By Kirtar Oza

Windows Process Internals: A few Concepts to know before jumping on Memory Forensics [Part 5] – A Journey in to the Undocumented Process Handle Structures (_handle_table & _handle_table_entry) In this series of articles of “Must know Process Internals for Memory Forensics”, we have traversed through ActiveProcessLinks (doubly-linked list) of EPROCESS....

Read the rest of this story with a free account.

Sign up with Google Sign up with Facebook Sign up with email

Already have an account? Sign in

September 17, 2020

Author

dominika.zdrodowska

Latest Articles

BlogSeptember 29, 2020Using the Google custom search engine for OSINT | By Maciej Makowski
BlogSeptember 22, 2020Sysmon 12.0 — EventID 24 | By Olaf Hartong
BlogSeptember 21, 2020Decrypting Databases Using RAM Dump – Health Data | By Michal Rozin
BlogSeptember 18, 2020TikTok — Using OSINT to Discover New Leads | By Josh Richards

Subscribe

0 Comments

Inline Feedbacks

View all comments

https://eforensicsmag.com/wp-content/uploads/2023/06/logo_eForensics_white.svg

© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023