Digital Forensic Survival Podcast: DFSP # 286 - Lateral MM Fast Triage 2 [5145]

Digital Forensic Survival Podcast

2024
April
March
February
January

2023
December
November
October
September
August
July
June
May
April
March
February
January

2022
December
November
October
September
August
July
June
May
April
March
February
January

2021
December
November
October
September
August
July
June
May
April
March
February
January

2020
December
November
October
September
August
July
June
May
April
March
February
January

2019
December
November
October
September
August
July
June
May
April
March
February
January

2018
December
November
October
September
August
July
June
May
April
March
February
January

2017
December
November
October
September
August
July
June
May
April
March
February
January

2016
December
November
October
September
August
July
June
May
April
March
February

Now displaying: Page 1

DFSP # 286 - Lateral MM Fast Triage 2 [5145] 0

Aug 10, 2021

This week we continue with the Windows fast triage series. We are up to lateral movement and talking about admin shares. On topic this week is event 5145 which is a Windows log that records verbose information about network share objects and it is an artifact you can use to triage a system or group of systems for evidence of malicious lateral movement.

Download this Episode

0 Comments

Adding comments is not available at this time.