Live Response and Forensics with PowerShell course. This course teaches you how to use PowerShell to perform basic security triage on workstations and disk forensics. Being able to perform security and forensic triage can be a daunting task. However, there are many tools available to facilitate this process, one of which is PowerShell. In this course, Live Response and Forensics with PowerShell, you will learn how to use PowerShell to perform basic triage and forensics on a Windows workstation. First, you’ll examine PowerShell execution policies and gather system information. In the next step, you will find how to create a triage script using PowerShell and additional components to check the workstation. Finally, you’ll learn how to use the PowerForensics framework to perform disk analysis and create a forensic timeline. After completing this course, you will have the skills and knowledge to use PowerShell for digital forensics needed to perform triage and help identify what happened and possible remediation.
Be the first to comment