Alternate Data Streams - a hacking and forensics howto

Alternate Data Streams are a way to store data on a machine that is not readily accessible to users. Using ADS, files are not accessible by Windows operating system and they do not show up in any file directory. Windows generates it's own ADS and most P2P software typically utilize ADS.

In this video, one of the bonus labs from the InfoSec Institute Computer Forensic Online Training, we will examine Alternate Data Streams:

* How to create them manually.
* How to read them.
* How to find them if you think they are on a system but not where they might be.

We will also do a brief demonstration of ADS Spy, a tool specifically designed to locate Alternate Data Streams.

MORE ON INFOSEC INSTITUTE
Recognized as a 2018 Gartner Peer Insights Customers’ Choice for Security Awareness Computer-Based Training, InfoSec Institute fortifies organizations of all sizes against security threats with its award-winning security education solutions.

Recognizing that cybersecurity is everyone’s job, the company provides skills training and certification prep courses for security professionals while building the entire workforce’s security aptitude through awareness training and phishing simulations. InfoSec Institute is a Training Industry “Top 20 IT Training Company” and the Security Training & Education Program Gold Winner in Info Security Products Guide’s Global Excellence Awards.

Additional information can be found here:
- SecurityIQ awareness and anti-phishing platform: https://www.infosecinstitute.com/securityiq/
- InfoSec training and certification: https://www.infosecinstitute.com/flex
- InfoSec training and certification features: https://www.infosecinstitute.com/flex/pro/
- InfoSec training and certification guarantees: https://www.infosecinstitute.com/flex/guarantees/
- 100+ training and certification courses: https://www.infosecinstitute.com/courses

Видео Alternate Data Streams - a hacking and forensics howto канала Infosec