CF Pract3

Uploaded by

ayusjuly27

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

14 views3 pages

CF Pract3

Uploaded by

ayusjuly27

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

Name: -Rohan Sunar Roll no.

:- CS21028
Cyber Forensics
Practical No. 3

Aim :- Analyze the memory dump of a running computer system.

 Extract volatile data, such as open processes, network connections, and registry information.

Open Process
Step 1 :- Go to Sysinternal Suite  ProcMon  Right Click on it and Open As Administrator

Step 2 :- And Opens process Monitor

Name: -Rohan Sunar Roll no.:- CS21028

Network Connections

Step 1 :- Go to SysinternalSuite  TCPview

Step 2 :- Opens TCPView

Name: -Rohan Sunar Roll no.:- CS21028

Registry Information

Step 1 :- Click on Search Bar on the Taskbar  Type Regedit  Click on Registry Editor

Step 2 :- View the desired registries to be analyzed

CF Pract5
100% (1)
CF Pract5
7 pages
CF Practical 3
No ratings yet
CF Practical 3
5 pages
Azure AD Connect Exploitation Guide
No ratings yet
Azure AD Connect Exploitation Guide
16 pages
Windows 10 Live Analysis Using Sysinternals Lasw26-Precourse-free
No ratings yet
Windows 10 Live Analysis Using Sysinternals Lasw26-Precourse-free
9 pages
Rekall Memory Forensics Cheatsheet
No ratings yet
Rekall Memory Forensics Cheatsheet
2 pages
New - Lab Manual 4 - Malware Hunting - Updated2022 - V2
No ratings yet
New - Lab Manual 4 - Malware Hunting - Updated2022 - V2
14 pages
Digital Forensics with DFIRtriage Tool
No ratings yet
Digital Forensics with DFIRtriage Tool
10 pages
Volatility Final
No ratings yet
Volatility Final
3 pages
Manager
No ratings yet
Manager
11 pages
SS Guide - by Specially
No ratings yet
SS Guide - by Specially
11 pages
Threat Analysis Report: Hash Values File Details Environment
No ratings yet
Threat Analysis Report: Hash Values File Details Environment
24 pages
Dynamic Analysis Tools Guide
No ratings yet
Dynamic Analysis Tools Guide
12 pages
Registry Forensic Cheatsheet v1
No ratings yet
Registry Forensic Cheatsheet v1
3 pages
(Part2) Malware Incident Response Dynamic Analysis - 1
No ratings yet
(Part2) Malware Incident Response Dynamic Analysis - 1
31 pages
IT Admins: Remote Patch Management
No ratings yet
IT Admins: Remote Patch Management
5 pages
Digital Forensics: Investigating NIST Data Leakage Case
No ratings yet
Digital Forensics: Investigating NIST Data Leakage Case
140 pages
3 NetworkSecurity LABManual
No ratings yet
3 NetworkSecurity LABManual
33 pages
Basic Static Malware Analysis Lab Guide
No ratings yet
Basic Static Malware Analysis Lab Guide
10 pages
Digital Forensics Guide for Students
No ratings yet
Digital Forensics Guide for Students
21 pages
Apt 1
No ratings yet
Apt 1
17 pages
Forensic
No ratings yet
Forensic
8 pages
Module 06 - Windows Forensics-1
No ratings yet
Module 06 - Windows Forensics-1
59 pages
Windows Security Logging Guide
No ratings yet
Windows Security Logging Guide
27 pages
Malware Dynamic Analysis Guide
No ratings yet
Malware Dynamic Analysis Guide
11 pages
The Windows Forensic Journey
No ratings yet
The Windows Forensic Journey
52 pages
Windows Forensic
No ratings yet
Windows Forensic
24 pages
Network Security Lab Manual
No ratings yet
Network Security Lab Manual
33 pages
Blue Team Toolkit Collection
No ratings yet
Blue Team Toolkit Collection
29 pages
Digital Forensics Cheatsheet
No ratings yet
Digital Forensics Cheatsheet
2 pages
Global Verdict Report 4
No ratings yet
Global Verdict Report 4
35 pages
Malware Detection and Removal Guide
No ratings yet
Malware Detection and Removal Guide
8 pages
(@CyberBankSa) - Lab 15 - Analyzing Different Windows Artifacts
No ratings yet
(@CyberBankSa) - Lab 15 - Analyzing Different Windows Artifacts
24 pages
FuzzySecurity Windows Privilege Escalation Fundamentals
No ratings yet
FuzzySecurity Windows Privilege Escalation Fundamentals
18 pages
Forensic Investigation Extract Volatile Data Manually 1698022671
No ratings yet
Forensic Investigation Extract Volatile Data Manually 1698022671
26 pages
Detailed Digital Forensics
No ratings yet
Detailed Digital Forensics
31 pages
Digital Forensics for IT Professionals
No ratings yet
Digital Forensics for IT Professionals
52 pages
Computer Network and System Tools
78% (9)
Computer Network and System Tools
43 pages
1.2.5. Estructura Organizacional para Operar El Programa.
No ratings yet
1.2.5. Estructura Organizacional para Operar El Programa.
39 pages
Nmap Penetration Testing Lab Guide
0% (1)
Nmap Penetration Testing Lab Guide
9 pages
Fix Shared Folder Access in Windows 10
No ratings yet
Fix Shared Folder Access in Windows 10
1 page
Areeba Zafar (2130-0102)
No ratings yet
Areeba Zafar (2130-0102)
21 pages
Open Source Exp3
No ratings yet
Open Source Exp3
6 pages
Network and Computer Configuration Tools
66% (32)
Network and Computer Configuration Tools
6 pages
VICBHE Module 10 Practical 6
No ratings yet
VICBHE Module 10 Practical 6
4 pages
Approach For Icag Delegates
No ratings yet
Approach For Icag Delegates
5 pages
5 Windows Command Line Tools
No ratings yet
5 Windows Command Line Tools
36 pages
Worst
No ratings yet
Worst
5 pages
Dfi Final 2130-0131
No ratings yet
Dfi Final 2130-0131
11 pages
Windows Incident Response Cheat Sheet
No ratings yet
Windows Incident Response Cheat Sheet
23 pages
LAB 8 Cao Duc Anh HE180550 IAM302
No ratings yet
LAB 8 Cao Duc Anh HE180550 IAM302
12 pages
Perform Forensics Examination of Winregistry
No ratings yet
Perform Forensics Examination of Winregistry
7 pages
Jackcr Forensic Challenge Report - Ver2-20121202-BN
No ratings yet
Jackcr Forensic Challenge Report - Ver2-20121202-BN
29 pages
ScreenSharing Guide - Remorsefull
No ratings yet
ScreenSharing Guide - Remorsefull
5 pages
AI Journal Merged
No ratings yet
AI Journal Merged
30 pages
CF Pract6
No ratings yet
CF Pract6
7 pages
CF Pract4
No ratings yet
CF Pract4
6 pages
CCW Assingment
No ratings yet
CCW Assingment
1 page

CF Pract3

Uploaded by

CF Pract3

Uploaded by

Name: -Rohan Sunar Roll no.

Aim :- Analyze the memory dump of a running computer system.

Step 2 :- And Opens process Monitor

Step 1 :- Go to SysinternalSuite  TCPview

Step 2 :- Opens TCPView

Step 2 :- View the desired registries to be analyzed

You might also like