Introducing OSForensics by PassMark Software
System Information: Learn how to detect Bitlocker encryption
Using the Workflow: Learn how to use the OSForensics user interface workflow.
Process-Specific Memory Images: Learn how to collect process specific memory images.
Recent Activity: Learn how to collect evidence of recent activity.
Custom Logical Images: Learn how to create a Custom Logical Image.
File Decryption: Learn how to perform file decryption on various document types.
Creating Forensic Images: Learn how to collect process specific memory images.
Basic File Recovery: See how to search for and recover files that have been deleted from disk.
File Indexing & Searching: Learn how to scan the contents of documents and emails on a disk and create a search index to allow fast searching through them.
Case Management: Cases are used to group together findings within OSForensics that can be exported or saved for later analysis.
Create & Install Hash Sets: Hash sets are used to quickly identify known safe files and known suspect files, see how to create and install new hash sets.
Using Hash Sets and File Name Search: Hash sets are used to quickly identify known safe files and known suspect files, see how to use hash sets in this video.
Password Recovery: See how to search for passwords stored in web browsers and retrive passwords of encrypted documents.
Recent Activity: A demonstration of scanning a system for evidence of recent activity, such as accessed websites, USB drives, wireless networks, and recent downloads.
Signatures: These allow users to identify changes to the file system and registry between two points in time, watch how to generate and use signatures.
Copyright © 2020 PassMark™ Software