OS Analysis with Volatility

Focused View

Tim Coakley

27:49

115 View

Exercise Files

os-analysis-volatility.zip

Module 1 - Course Overview

1. Course Overview.mp4

02:10

Module 2 - Detect and Respond with Volatility

1. Volatility Overview.mp4

08:09

2. Investigating User Command History.mp4

08:43

3. Suspect Process Investigation and Mitigation.mp4

07:48

Module 3 - Resources

1. Resources.mp4

00:59

Description

In this course, you will learn how to perform OS analysis of volatile memory using the tool volatility, the most advanced memory forensics framework.

What You'll Learn?

In this course, OS analysis with Volatility, you will cover how to utilize Volatility to identify and detect evidence of suspected compromise such as malicious commands and programs executed on a host computer system. You will learn how to extract the command line history from the volatile memory. You will also learn how to initiate an investigation of malicious programs and how to defend against malicious program execution. When you are finished with the course, you will have the skills and knowledge to aid in mitigating technique T1055 and 1059.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Windows Server

Operating System Creation

Tim Coakley

Instructor's Courses

Tim Coakley is a Senior Security Solutions Architect for a large multi-national organisation and an author at Pluralsight. Tim started a long and successful full-time career in Digital Forensics supporting the criminal justice system and law enforcement on a long list of criminal cases. Parallel to this Tim ran a research and development business creating solutions from design through to support resulting in some unique and niche software not developed anywhere else. Tim now works fully within the cybersecurity space and has supported and worked within many security teams including, Investigations, Incident Response, Threat intelligence, Penetration Testing, Governance and Engineering until landing into Security Architecture. Tim has worked in a broad range of industries including Law Enforcement, Telecommunications, Pharmaceuticals, Intelligence, Military, Contracting and consulting. Outside of professional working life, Tim enjoys travelling, hiking, kitesurfing and cooking.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.