Hi all, There is a new article in the Incidents focus area of the SecurityFocus Web site. Windows Forensics - A Case Study: Part Two By Stephen Barish This article is the second in a two-part series that will offer a case study of forensics in a Windows environment. This installment deals with determining the scope of the compromise, and understanding what the attacker is trying to accomplish at the network level. Along the way, we'll be discussing some tools and techniques that are useful in this type of detective work. http://www.securityfocus.com/infocus/1672 --Daniel Hanson ---------------------------------------------------------------------------- <Pre>Lose another weekend managing your IDS? Take back your personal time. 15-day free trial of StillSecure Border Guard.</Pre> <A href="http://www.securityfocus.com/stillsecure"> http://www.securityfocus.com/stillsecure </A>
This archive was generated by hypermail 2b30 : Thu Mar 06 2003 - 13:01:17 PST