Windows Forensic Analysis DVD Toolkit
2nd Edition
Published on 22. September 2009
Book
Paperback/Softback
512 pages
978-1-59749-422-9 (ISBN)
Description
Windows Forensic Analysis DVD Toolkit, Second Edition, is a completely updated and expanded version of Harlan Carvey's best-selling forensics book on incident response and investigating cybercrime on Windows systems. With this book, you will learn how to analyze data during live and post-mortem investigations.
New to this edition is Forensic Analysis on a Budget, which collects freely available tools that are essential for small labs, state (or below) law enforcement, and educational organizations. The book also includes new pedagogical elements, Lessons from the Field, Case Studies, and War Stories that present real-life experiences by an expert in the trenches, making the material real and showing the why behind the how. The companion DVD contains significant, and unique, materials (movies, spreadsheet, code, etc.) not available anyplace else because they were created by the author.
This book will appeal to digital forensic investigators, IT security professionals, engineers, and system administrators as well as students and consultants.
New to this edition is Forensic Analysis on a Budget, which collects freely available tools that are essential for small labs, state (or below) law enforcement, and educational organizations. The book also includes new pedagogical elements, Lessons from the Field, Case Studies, and War Stories that present real-life experiences by an expert in the trenches, making the material real and showing the why behind the how. The companion DVD contains significant, and unique, materials (movies, spreadsheet, code, etc.) not available anyplace else because they were created by the author.
This book will appeal to digital forensic investigators, IT security professionals, engineers, and system administrators as well as students and consultants.
Reviews / Votes
"If your job requires investigating compromised Windows hosts, you must read Windows Forensic Analysis."-- Richard Bejtlich, Coauthor of Real Digital Forensics and Amazon.com Top 500 Book Reviewer
More details
Edition
2nd edition
Language
English
Place of publication
Rockland, MA
United States
Target group
Professional and scholarly
Digital forensic investigators, IT security professionals, engineers, and system administrators
Illustrations
Approx. 130 illustrations
Dimensions
Height: 235 mm
Width: 191 mm
Weight
900 gr
ISBN-13
978-1-59749-422-9 (9781597494229)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
New editions
Book
03/2012
3rd Edition
Syngress
€79.41
Article exhausted; check for reprint
Additional editions
Harlan Carvey
Windows Forensic Analysis DVD Toolkit
E-Book
06/2009
2nd Edition
Syngress
€43.95
Available for download
Previous edition
Book
03/2012
3rd Edition
Syngress
€79.41
Article exhausted; check for reprint
Person
Mr. Carvey is a digital forensics and incident response analyst with past experience in vulnerability assessments, as well as some limited pen testing. He conducts research into digital forensic analysis of Window systems, identifying and parsing various digital artifacts from those systems, and has developed several innovative tools and investigative processes specific to the digital forensics analysis field. He is the developer of RegRipper, a widely-used tool for Windows Registry parsing and analysis. Mr. Carvey has developed and taught several courses, including Windows Forensics, Registry, and Timeline Analysis.
Content
1: Live Response: Collecting Volatile Data
2: Live Response: Analyzing Volatile Data
3: Windows Memory Analysis
4: Registry Analysis
5: File Analysis
6: Executable File Analysis
7: Rootkits and Rootkit Detection
8: Tying It All Together
9: Forensic Analysis on a Budget
2: Live Response: Analyzing Volatile Data
3: Windows Memory Analysis
4: Registry Analysis
5: File Analysis
6: Executable File Analysis
7: Rootkits and Rootkit Detection
8: Tying It All Together
9: Forensic Analysis on a Budget