Hacking Exposed Computer Forensics Blog

NTFS Triforce - A deeper look inside the artifacts

Hello Reader, In our last post we discussed at a high level the relationship between the $MFT, $LOGFILE and $USNJRNL. In this ...

NTFS Triforce - A deeper look inside the artifacts

Reviewed by David Cowen on January 07, 2013 Rating: 5

Feliz Nuevo Ano Reader!, Thanks for sticking with me and my erratic schedule through 2012. One ...

Happy new year, new post The NTFS Forensic Triforce

Reviewed by David Cowen on January 04, 2013 Rating: 5