Skip to content

Introduction to Windows Baseline

Windows Baseline Module will cover the basics of baselining within the Windows environment as well as enumeration concepts within Windows.


Into Video to Local Enumeration

Objectives

  • Understand Windows Baselining and Enumeration
  • Understand Order of Volatility
  • Understand Common Surveying Commands
  • Discuss common survey response tools
  • Discuss common triage logs and artifacts

TLO Knowledge and Skills

Conditions:

  • Given a classroom, applicable references, and a practical exercise, the Cyber Mission Force, students will demonstrate an understanding of Windows Enumeration and Baselining.

Knowledge

  1. Evidence Acquisition
  2. Order of Volatility
  3. Chain of Custody
  4. Common Survey Commands
  5. Common Survey Response Tools
  6. Common triage logs and artifacts
  7. Enumeration Information

Skills:

  1. Discuss the enumeration process of a windows device.
  2. Discuss the common commands used to conduct a windows survey.
  3. Conduct an Enumeration Baseline of a windows device.
  4. Discuss the steps after a windows survey.
  5. Discuss Chain of Custody concepts.
  6. Describe the order of volatility in relation to collecting evidence.
  7. List actions to avoid while conducting a survey.