Practical Windows Forensics.

Over the last few years, the wave of the cybercrime has risen rapidly. We witnessed many major attacks on the governmental, military, financial, and media sectors. Tracking all these attacks and crimes requires a deep understanding of operating system operations, how to extract evidential data from...

Descripción completa

Detalles Bibliográficos
Clasificación:Libro Electrónico
Autor principal: Shaaban, Ayman
Formato: Electrónico eBook
Idioma:Inglés
Publicado: Packt Publishing, 2016.
Edición:1.
Temas:
Computer crimes > Investigation.
Criminalité informatique > Enquêtes.
Computer crimes > Investigation
Acceso en línea:Texto completo
Descripción
Sumario:Over the last few years, the wave of the cybercrime has risen rapidly. We witnessed many major attacks on the governmental, military, financial, and media sectors. Tracking all these attacks and crimes requires a deep understanding of operating system operations, how to extract evidential data from digital evidence, and the best usage of the digital forensic tools and techniques. Here's where Linux comes in. There's a special Linux emulation environment in Windows that allows us be come on par with and experience Linux-like features. Regardless of your level of experience in the field of information security in general, Linux for Digital Forensics will fully introduce you to digital forensics. It will provide you with the knowledge needed to assemble different types of evidence properly, and walk you through various stages of the analysis process. We start by discussing the principles of the digital forensics process and move on to learning about the approaches that are used to conduct analysis. We will then study various tools to perform live analysis, and go through different techniques to analyze volatile and non-volatile data. This will be followed by recovering data from hard drives and grasping how to use multiple tools to perform registry and system log analyses. Next, you will be taught to analyze browsers and e-mails as they are crucial aspects of investigations. We will then go on to extract data from a computer's memory and investigate network traffic, which is another important checkpoint. Lastly, you will learn a few ways in which you can present data because every investigator needs a work station where they can analyze forensic data.
Descripción Física:1 online resource (322)
ISBN:178355410X
9781783554102
1783554096
9781783554096

Ejemplares similares