Blog Archives

Generating a useful file listing using PowerShell

When trying to figure out what happened on a machine during a specific time-frame, a sorted file listing is quite useful. There are several ways of going about it when creating one, and as requested, here’s the way I do

Tagged with:
Posted in General

How to enable PreFetch in Windows Server

Yesterday I held a presentation on forensics and incident response at the TrueSec Security Summit. One of the major challenges when responding to a breach is figuring out exactly what an attacker has done on a machine. Did they dump

Tagged with: , ,
Posted in General