Programs - Forensic analysis of NTDS.DIT

  • Location: Security Theater
  • Speaker: Csaba Barta CHFI
  • Date and time: 17. September 2011. 10:25 - 11:10

The presentation introduces a software framework developed by the speaker for the forensic analysis of NTDS.DIT which is the main database of Microsoft Active Directory

 

The presentation introduces a software framework developed by the speaker for the forensic analysis of NTDS.DIT which is the main database of Microsoft Active Directory. Until now the forensic field did not have the appropriate tools for processing this information source. The speaker will also show how to obtain information stored nowhere else, but NTDS.DIT. The tools are capable of extracting different information in a form that is suitable for further processing and analysis.
 

Sponsors:

Gold
Gold
Gold
Silver
Silver
Silver
Silver
Silver
Silver
Bronze
JOB
Technical