Introduction
As everyone knows, the Windows Operating System launched by Microsoft is the most widely used OS in the world. As per the statistics, more than eighty percent of people use a Windows environment for both personal and official use. Forensics investigators very often use the Windows Operating System for collecting evidence, specifically by using Registry Editor.
Registry Editor can be used to gather valuable information about the evidence. Hence, Windows Registry is a place wherein we can get a lot of information for evidence purposes.
Objective
The objective of this article to help forensic investigators understand how to extract information from a computer using the registry editor.
read more......http://resources.infosecinstitute.com/windows-registry-forensics/
As everyone knows, the Windows Operating System launched by Microsoft is the most widely used OS in the world. As per the statistics, more than eighty percent of people use a Windows environment for both personal and official use. Forensics investigators very often use the Windows Operating System for collecting evidence, specifically by using Registry Editor.
Registry Editor can be used to gather valuable information about the evidence. Hence, Windows Registry is a place wherein we can get a lot of information for evidence purposes.
Objective
The objective of this article to help forensic investigators understand how to extract information from a computer using the registry editor.
read more......http://resources.infosecinstitute.com/windows-registry-forensics/