Practical Linux forensics : a guide for digital investigators /

"A thorough resource for forensic investigators, this book covers a variety of methods and techniques for locating and analyzing digital evidence found on modern Linux systems after a security incident or cyberattack. Readers will learn how Linux works from a digital forensics and investigation...

Descripción completa

Detalles Bibliográficos
Clasificación:Libro Electrónico
Autor principal: Nikkel, Bruce (Autor)
Formato: Electrónico eBook
Idioma:Inglés
Publicado: San Francisco : no starch press, [2022]
Temas:
Linux.
Linux
Digital forensic science.
Computer crimes > Investigation.
Data recovery (Computer science)
Criminalité informatique > Enquêtes.
Récupération des données (Informatique)
Acceso en línea:Texto completo (Requiere registro previo con correo institucional)
Tabla de Contenidos:
  • Digital forensics overview
  • Linux overview
  • Extracting evidence from storage devices and filesystems
  • Directory layout and forensic analysis of Linux files
  • Investigating evidence from Linux log
  • Reconstructing system boot and initialization
  • Examination of installed software packages
  • Identifying network configuration artifacts
  • Forensic analysis of time and location
  • Reconstructing user desktops and login activity
  • Forensic traces of attached peripheral devices
  • Closing remarks
  • File and directory list for digital investigators.

Ejemplares similares