机译:从Windows物理内存中提取取证敏感信息
Computer Security Laboratory, Concordia Institute for Information Systems Engineering, Concordia University, Montreal, Quebec, Canada;
Computer Security Laboratory, Concordia Institute for Information Systems Engineering, Concordia University, Montreal, Quebec, Canada;
Computer Security Laboratory, Concordia Institute for Information Systems Engineering, Concordia University, Montreal, Quebec, Canada;
computer forensics; digital investigation; windows memory; sensitive information; application fingerprint; memory analysis; stack analysis; string matching;
机译:自动Windows内存文件提取以进行网络取证调查
机译:从Windows物理内存收集敏感信息
机译:Windows自动启动可扩展性点在内存取证中的特征和可检测性
机译:从Windows 7物理内存对可执行文件进行取证重建
机译:Windows物理内存的取证分析
机译:Windows 10 IOT核心中的非易失性内存法医分析
机译:Microsoft Windows XP物理内存的脱机取证分析