Skip to search.
win4n6 · Windows Forensic Analysis
  • Members Only
  • Post
  • Files
  • Photos
  • Links
  • Database
  • Polls
  • Members
  • Calendar
  • Promote
  • Groups Labs (Beta)
  • Chat

Group Information

  • Members: 910
  • Category: Other
  • Founded: Jan 12, 2008
  • Language: English
? Already a member? Sign in to Yahoo!

Yahoo! Groups Tips

Did you know...
Message search is now enhanced, find messages faster. Take it for a spin.
Notice  Upcoming calendar upgrade: Yahoo! Groups calendars are being upgraded to a much improved version. You may not have access to the calendar (for up to 24 hours) when this group is upgraded. We sincerely apologize for this inconvenience.

Home

  

Activity within 7 days:

3 New Members - 81 New Messages - New Questions

Description

Windows Forensic Analysis is dedicated to sharing information pertinent to incident response and computer forensic analysis of the Windows NT+ family of operating systems. Topics can cover live response, forensic analysis, Registry or memory analysis, etc.

Most Recent Messages

  (View All)
(Group by Topic)
Search:
Advanced
    Start Topic
Very good material for training and assessment of Cyber Investigatio
FYI - CSI Cyber has been updated! Over 350 questions on Cyber Investigations Very good material for training and assessment of Cyber Investigation skill sets:
Posted - Sat May 26, 2012 7:41 pm
 Sandro Suffert
sandro_suffert
Offline Offline
Send Email Send Email
Re: 4k sectors, NTFS and the MFT
X-Ways has always been the Swiss Army knife of forensic tools. I have found that it is prone to crashes with large images on 64-bit systems but haven't been
Posted - Sat May 26, 2012 6:40 pm
 Sean McLinden
sean.mclinden
Offline Offline
Send Email Send Email
Re: 4k sectors, NTFS and the MFT
Which is why your recommendation to use X-Ways carries so much weight, haven't regretted it once. ... -- Robin Jackson Security+, CISSP, ITIL Senior Partner WT
Posted - Sat May 26, 2012 6:20 pm
 Robin Jackson
wt4n6
Offline Offline
Send Email Send Email
Re: 4k sectors, NTFS and the MFT
As expected, X-Ways Forensics handles the image just fine. It also looks as though Mount Image Pro 4.12 can mount the image. Jimmy Weg, CFCE Agent in Charge,
Posted - Sat May 26, 2012 5:20 pm
 Weg, Jimmy
jimmyweg
Offline Offline
Send Email Send Email
4k sectors, NTFS and the MFT
After the discussion Adam started the other day regarding 4k sector drives I did a bit of testing, I presented the results at the last DFIROnline (which will
Posted - Sat May 26, 2012 4:47 am
 Mike Wilkinson
mike@...
Send Email Send Email
Add win4n6 to your personalized My Yahoo! page Add to My Yahoo! XML What's This?

Message History

Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec
2012 287 221 233 259 213
2011 152 194 220 183 193 209 147 152 99 52 147 124
2010 139 148 149 237 203 152 129 147 267 237 101 157
2009 2 6 16 38 36 12 122 64 79 103 267 239
2008 16 84 78 33 81 72 52 24 27 1 2 9
What is Yahoo! Answers?

Yahoo! Answers, a new Yahoo! community, is a question and answer exchange where the world gathers to share what they know...and make each other's day. People can ask questions on any topic, and help others out by answering their questions.

Hide this tip
What is Yahoo! Answers?

Yahoo! Answers, a new Yahoo! community, is a question and answer exchange where the world gathers to share what they know...and make each other's day. People can ask questions on any topic, and help others out by answering their questions.

Hide this tip

Questions in Computers & Internet

  • Questions are currently unavailable.

Want to help answer other questions? Go to Yahoo! Answers
Copyright © 2010 Yahoo! Inc. All rights reserved.
Privacy Policy - Terms of Service - Guidelines NEW - Help