Windows ShellBag Forensics in Depth

The problem of identifying when and which folders a user accessed arises often in digital forensics. Forensicators attempt to search for them in the ShellBags information because it may contain registry keys that indicate which folders the user accessed in the past. Their timestamps may demonstrate...
By
Vincent Lo
April 14, 2014

All papers are copyrighted. No re-posting of papers is permitted

470x382_Generic_Whitepaper.jpg