Intro to Windows Forensics: Windows Registry Artifacts - TryHackMe Walkthrough
TryHackMe recently released a room dedicated to Windows Forensics! We do a walkthrough of the TryHackMe WindowsForensics1 room and learn all about the Windows Registry in digital investigations. This room covers Windows Registry Hive locations, software tools used for investigation, Windows Registry artifacts, and their meanings.
Learn to analyze UserAssist, MRUs, ShellBags, external devices, and so much more.
Thank you to our Members and Patrons, but especially to our Investigators TheRantingGeek and Roman! Thank you so much!
Sign up for the room free here to follow along:
00:00 TryHackMe WindowsForensics
00:19 Open TryHackMe Windows Forensics room
00:35 Introduction to Windows Forensics
02:34 Windows Registry and Forensics
06:31 Exploring Windows Registry
08:30 System Information and System Accounts
14:17 Usage or knowledge of files/folders
17:48 Evidence of Execution
20:56 External Devices/USB de
1 month ago 00:03:17 1
1 month ago 02:01:18 1
1 month ago 00:32:14 1
1 month ago 00:10:44 1
1 month ago 00:16:46 1
1 month ago 00:08:10 1
2 months ago 00:27:21 1
2 months ago 01:21:24 1
2 months ago 00:23:23 1
2 months ago 00:20:02 1
2 months ago 00:40:25 1
2 months ago 00:13:57 1
2 months ago 00:03:50 1
2 months ago 00:01:18 1
2 months ago 00:25:43 1
2 months ago 00:01:20 1
2 months ago 00:08:59 1
2 months ago 00:44:35 1
2 months ago 00:04:41 1
2 months ago 00:05:53 1
2 months ago 00:03:23 1
2 months ago 00:17:26 1
2 months ago 00:09:54 1
2 months ago 00:13:21 1
