Any tools to recommend? Especially those that run on Windows.
Especially looking at tools that:
a) check which files have been compromised & when it took place & if it has spread further
b) can trace how ransomwares come in (via Flash player, Adobe pdf reader, MS Office or ???)
c) inspect malicious payloads (that passed thru our NIDS & firewalls)
d) anything low-cost & free from Fireeye? Think I saw something from Fireeye before.
We ever contemplate engaging them for Compromise Assessment
If Linux is required, will need to dual-boot that laptop but problem is that laptop has
Hard Disk encryption on it so this is going to be an issue