Found myself teaching #ProcMon and #Troubleshooting to a peer again today. It was an essential skill in a previous role and one that everyone should have in their tool box.

Additional tools include #AuditPol and #Sysmon

I cover two of those (Sys and Procmon) in this video.

Give it a watch, share it around, etc....

https://youtu.be/rr5CI7rakkU?t=2453

These are great tools to use when more advanced malware sandboxing tools aren't available. VM and #Sysinternals

#DFIR #Forensics #HelpDesk #Malware