Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Forensic Analysis of TAILS - The Amnesic Incognito Live System

SANS via YouTube

Start learning Write review
CourseHorse Ad

The Perfect Gift: Any Class, Never Expires

Learn More → Boot.dev Ad

Learn Backend Development Part-Time, Online

Learn More →

Overview

Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Learn forensic imaging and analysis techniques for investigating systems running TAILs (The Amnesic Incognito Live System) operating system in this 35-minute conference presentation from SANS DFIR Summit 2025. Discover how adversaries leverage TAILs for criminal activities and explore the unique challenges investigators face when confronting systems running this privacy-focused operating system. Master practical methods for imaging TAILs instances that run within physical memory (RAM) of host systems, and understand how to extract valuable forensic artifacts from memory dumps. Examine specific techniques for locating and analyzing artifacts of interest within TAILs environments, addressing common issues encountered during forensic investigations of this amnesic operating system. Gain insights from real-world incident response scenarios and learn proven methodologies for overcoming the inherent challenges of investigating systems designed to leave minimal forensic traces.

Syllabus

Forensic Analysis of TAILs

Taught by

SANS Digital Forensics and Incident Response

Reviews

Start your review of Forensic Analysis of TAILS - The Amnesic Incognito Live System

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.