Priyadharshan Tamil Arasu
This is Priyadharshan Tamil Arasu's talk page, where you can send them messages and comments. |
|
Your submission at Articles for creation: sandbox (June 23)
edit- User:Priyadharshan Tamil Arasu/sandbox may be deleted at any time unless the copied text is removed. Copyrighted work cannot be allowed to remain on Wikipedia.
- If you need any assistance, you can ask for help at the Articles for creation help desk or on the reviewer's talk page.
- You can also use Wikipedia's real-time chat help from experienced editors.
Hello! Priyadharshan Tamil Arasu,
I noticed your article was declined at Articles for Creation, and that can be disappointing. If you are wondering why your article submission was declined, please post a question at the Articles for creation help desk. If you have any other questions about your editing experience, we'd love to help you at the Teahouse, a friendly space on Wikipedia where experienced editors lend a hand to help new editors like yourself! See you there! Roger (Dodger67) (talk) 20:04, 23 June 2017 (UTC)
|
windows live response
editWindows live response for collecting and analyzing forensically sound evidence.
Sometimes your victim cannot afford to remove the system or the only evidence of the incident may currently be in memory. Either way, a standard forensic duplication is impossible. This chapter will address a technique for collecting and analyzing forensically sound evidence from what is known as the Live Incident Response Process.
What we do?
Initially as security analyst that monitor the photograph computer screen which record the current system time and note this against an accurate time source.
Begin data acquisition in order of volatility(OOV)
• Physical memory, open files, open network connection, swap space
• Encrypted files system where you do not have key to unlock
• Temporary file system.
Record current system time for twice, message digest of gathered evidence using tool Helix, netcat and cryptcat.<ref>http://www.brimorlabsblog.com/2015/09/introducing-windows-live-response.html<ref>