tag:blogger.com,1999:blog-6787362638788314904.post3253436235205227398..comments2024-03-07T06:22:55.106-05:00Comments on Push the Red Button: Window Messages as a Forensic ResourceBrendan Dolan-Gavitthttp://www.blogger.com/profile/17143824408632888880noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-6787362638788314904.post-42348140917355895942008-11-08T08:32:00.000-05:002008-11-08T08:32:00.000-05:00Moyix,I was working with some other modules this m...Moyix,<BR/><BR/>I was working with some other modules this morning (w/ AAron's help) and decided to grab your modules, as well, and take a look. <BR/><BR/>Very cool! I didn't find anything particularly useful, but it's exciting just to have this capability. One of the things I'd love to see in an analysis process is to have this as part of the in-processing of all memory dumps.<BR/><BR/>Thanks again!H. Carveyhttps://www.blogger.com/profile/08966595734678290320noreply@blogger.comtag:blogger.com,1999:blog-6787362638788314904.post-90523140125527351262008-09-22T07:30:00.000-04:002008-09-22T07:30:00.000-04:00Moyix, this is awesome stuff! A great deal of the...Moyix, this is awesome stuff! A great deal of the post-mortem user activity tracking analysis that one would do relies heavily on what the shell "records" when a user interacts with the desktop.<BR/><BR/>Great job! I can't wait to try it out!H. Carveyhttps://www.blogger.com/profile/08966595734678290320noreply@blogger.com