Narasimha Karpoor SHASHİDHAR
Using PowerShell to Capture and Compare Windows Registry and Live Memory Artifacts with Online Databases to Identify Suspect Files.
Using PowerShell to Capture and Compare Windows Registry and Live Memory Artifacts with Online Databases to Identify Suspect Files.
International Journal of Information Security Science
2018-Cilt: 7 - Sayı: 2
78-89
–Registry,
Memory,
PowerShell,
Appcompatcache,
ShimCache
10123