Learn how MBR and GPT forensics are conducted to identify attacks during the boot process. Key tasks include understanding disk partitions, identifying malware, exploring boot processes, and resolving MBR and GPT tampering cases. Practical expertise is gained by using tools like HxD Editor and FTK Imager to analyze and fix corrupted disk partitions.
Table of contents
TryHackMe: MBR and GPT AnalysisTask 1: IntroductionTask 2: Boot ProcessTask 3: What if MBR?Task 4: Threats Targeting MBRTask 5: MBR Tampering CaseTask 6: What if GPT?Task 7: Threats Targeting GPTTask 8: UEFI Bootkit CaseSort: