all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

PowerShell command history (windows forensics)

Add to bookmarks
July 17, 2022, 3:29 p.m. | /u/EnormousJohnson

Computer Forensics www.reddit.com

When running a PowerShell command or a ps1 script, what forensic evidence is left behind? I know of the event logs and general PowerShell history.

Is there any where else that can be investigated to see if PowerShell commands have been executed? or any particular arftifects to look for?

Still new to windows forensics, thanks in advance :)

command computerforensics forensics history powershell windows windows forensics

Visit resource

More from www.reddit.com / Computer Forensics

How do I get started in computer forensics as a computer science student? 17 hours ago | www.reddit.com
can computer computer forensics computerforensics +13
Is public computer forensics dying? 1 day, 2 hours ago | www.reddit.com
check collections computer computer forensics +11
Is it better to get a associates in criminal justice and then a bachelors in … 1 day, 22 hours ago | www.reddit.com
computerforensics criminal cybersecurity enforcement +7
Horus v1.2.1 Released! (An OSINT / digital forensics tool built in Python - formerly 'Sentinel') 3 days, 21 hours ago | www.reddit.com
1.2.1 api assistance computerforensics +16
Any recommendations for textbooks I can read to get an introduction to digital forensics? 1 week ago | www.reddit.com
books can cissp computerforensics +10
Software Recommendations 1 week, 1 day ago | www.reddit.com
aim appointments cellebrite clients +19
Interesting argument in Qualification and Forensics tools 1 week, 2 days ago | www.reddit.com
argument computerforensics forensics forensics tools +1
Online websites or resources for DFIR reports 1 week, 2 days ago | www.reddit.com
actor attack blog computerforensics +12
Autopsy How can i fix this grey out tab? 1 week, 2 days ago | www.reddit.com
autopsy can computerforensics fix +1

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Officer Hospital - Major Hospital Account - Full-Time - Healthcare Security

@ Allied Universal | Anaheim, CA, United States
View on infosec-jobs.com

Product Security Lead

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com

Summer Associate, IT Information Security (Temporary)

@ Vir Biotechnology, Inc. | San Francisco, California, United States
View on infosec-jobs.com

Director, Governance, Risk and Compliance - Corporate

@ Ryan Specialty | Chicago, IL, US, 60606
View on infosec-jobs.com

Cybersecurity Governance, Risk, and Compliance Engineer

@ Emerson | Shakopee, MN, United States
View on infosec-jobs.com
View more jobs