The Windows registry is a hierarchical database with keys and values about configuration settings on the operating system. This could be used for both malicious- and defensive purposes.
A collection of 2 posts:
13 min read
In this walkthrough we will demonstrate the steps necessary to complete the Windows Forensics 1 room on TryHackMe.
12 min read
Members only
A big page with notes about all general blue/defensive techniques - all from forensics to malware analysis.