Home » Downloads » What are the importance of examining the Windows Registry during a forensic investigation

What are the importance of examining the Windows Registry during a forensic investigation

What are the importance of examining the Windows Registry during a forensic investigation, specifically as it relates to the article posted regarding fileless attacks.

https://securelist.com/blog/research/77403/fileles…

Part 2) – 2 pages – 600 words 

The idea of privacy is a right given to people secured by the wording in the fourth amendment of the constitution. It is the right of people to be secure in their persons, papers, and effects against unreasonable searches and seizures. Applying the fourth amendment rights to private entities such as corporations may not be as straight forward because the bill of rights was intended to restrict the powers of the government, not of private entities. To that fact, the extent the direction the private entity is working under must also be taken into consideration. An exception to the fourth amendment states if a private entity is acting as an agent of the government it would then full under the restrictions of the fourth amendment.

1. Would a third party cybersecurity contractor utilizing a tool such as Encase by Guidance Software working within private organizations to identify and mitigate a criminal threat fall under fourth amendment restriction? Remember encase is a powerful tool which has the ability to circumvent system level login restrictions as well as gain access to system wide files for these contractions to identify the security concern.

2. Should the federal government create guidelines and regulations for these third party security contractors to follow when dealing with personally identifiable information (PII) within a private organization, such as HIPPA was put in place to protect the confidentiality of patient information in the world of medicine?

Part 3) – 2 pages (600 words)

This question introduces many downstream issues and related concerns. It is obviously a hot-button topic for many people and as I learned, Americans appear to be both laissez-faire and paranoid in their attitudes toward data collection – depending on who is doing the collecting. Here are some more specific questions I thought might be interesting to get some good dialog going with regards to data collection by technology companies and by our government.

Question 1: Some interesting survey data from the Harvard Business Review shows that Americans, more than the other countries surveyed, are willing to spend more on protecting themselves from government information gathering efforts than on all the other 11 types of information types in the survey combined. This stands in stark contrast to other countries and other consumers around the world, who seem to have much less anxiety over their governments than around health insurers, credit card companies etc. What factors do you think could explain this and what reasons can you think of that make Americans so distrustful of their own government?

Question 2: The rise of data brokers and the information reselling industry has resulted in a tremendous for-profit industry that threatens to trample any reasonable notion of privacy. What steps should be taken (and who should take those steps) to police or at least restrain this fast growing industry?

Question 3: What are some of the potentially damaging consequences of the data collection industry and where do you see these trends heading?

Question 4: It is clear that the government collects and stores data about Americans for a limited time (leaked documents show a 3-5 day window that the NSA keeps browsing history). It is also clear that social media giants and technology companies keep your personal browsing data and store that data for a longer period of time (forever in some cases). What are some specific examples of where you see these retention policies causing problems or crossing ethical and legal boundaries?

Part 4) 1 page (300 words). 

In the world of technical careers, most people have some sort of certification or combination of several certifications. For every career path and IT field there are a litany of certifications available. There are vendor specific certifications from companies such as Microsoft and Cisco, as well as field specific certifications tailored to careers such as information security or networking.

There is a pretty robust argument that real world experience is much more important than a certification, and that a test can never replace hands on experience. This argument is said to have validity because it most definitely possible to study hard for a test and pass even without the relevant experience. There is also rampant cheating in the certification world due to “test dump” sites that provide the answers to popular certifications.

On the other hand, certifications provide a way for less experienced individuals with little to no professional experience to prove their knowledge and gain employment in entry to mid-level jobs. There are plenty of people who have been self-taught that are proficient in skills that need a way to show potential employers that they have what it takes to be successful. Also, studying for certifications provides training in areas that even experienced professionals may not have touched in their day to day jobs, as no one can ever touch every single aspect of their career field.

To start the discussion here are a couple questions to ponder:

Do you feel real world experience is more or less important than a certification in the hiring process? Why?

Obviously a combination of the two is the optimal option, but would you be willing to hire someone with little professional experience if they had higher level certifications and after an interview seemed like a right fit for the job? Explain why either way.

 

Answer preview to what are the importance of examining the Windows Registry during a forensic investigation

What are the importance of examining the Windows Registry during a forensic investigationAPA

1966 words

Get instant access to the full solution from yourhomeworksolutions by clicking the purchase button below