Who has successfully completed the course with an average score of 60 or above, demonstrating solid understanding and proficiency in all required topics and skills.
This certificate is proudly presented to:
Adam Morris
Advanced Windows Investigation
Issued on:
June 27, 2025
Training hrs:
8.27
10.5
CPE
Adam Morris
Syllabus:
Windows Registry Forensics
ZeroLogon
Gold in Trash - Forensics of Recycle Bin
RDP Cache Investigation
Windows Event Log & Sysmon
Prefetch Files
Windows Credentials Dumping
Windows Privilege Escalation
Filter Captures in Wireshark
Sysinternals - Introduction to Process Monitor (Procmon)
Windows Registry Introduction and Structure
Malicious use of Registry
Recycle Bin Forensic and Rifiuti2 Tool
Introduction to Prefetch Files
Introduction to Privilege Escalation
Introduction to Windows Credentials and Credentials Dumping
Introduction to Mimikatz
Sysinternals - Introduction to System Monitor (Sysmon)
Skills / Knowledge
- Practicing Windows logging research and advanced forensics
- Apply knowledge for Windows Registry analysis
- Detect Adversaries attempting to dump credentials to obtain account login and credential material
Issued on
June 27, 2025
Expires on
Does not expire