I recently submitted a thesis on Vista forensics as part of an industrial placement for my degree course. The idea was to bring together any information I could find on Vista forensics into one document and also to perform some of my own research. It's on here in pdf format if anyone wants to have a look (this link should be available for the next couple of weeks until my University account expires)
http//
It's certainly not perfect as it became quite rushed due to time constraints. It's probably quite useful for anyone who hasn't had much experince of Vista forensics. For people who've read extensively on Vista, sections 5.3 and 6.6 might be of interest as (afaik) that information isn't currently available on the web. I would have liked more time to spend looking at some of the points in 6.6 but in the end it just wasn't possible. Enjoy - or not.
-Barrie
Thanks Barrie, I've added a link to this topic in this month's newsletter for anyone who may have missed it.
Jamie
Barry, this is pretty handy! You downplay its quality. If anything its an excellent reference.
Good piece of work Barrie and good of you to share your work - thank you.
Greg smith
Very interesting and clear, thanks. )
jaclaz
Some interesting things in there, very useful, thanks!
I have problems to access the file!
Well, I just checked and double clicking the link, then the name of the file on the page the link points to does indeed work. So, the problem is not with the posting, or the site. To proceed we'll need more information. What problems are you having? Where does the process stop? etc.
Great work, I have yet to analize a Vista system. This will come in handy when I do.
Cheers )
Sorry, it was a problem with my firewall, fix it, and already downloaded the paper.
Thanks a lot!