Windows Forensic Analysis DVD Toolkit
and over one million other books are available for Amazon Kindle .
Learn more
| |||||||||||||||
 Trade In this Item for up to £15.45
Get an extra £5 when you trade in books worth £10 or more until June 30, 2012. Trade in Windows Forensic Analysis DVD Toolkit for an Amazon.co.uk gift card of up to £15.45, which you can then spend on millions of items across the site. Trade-in values may vary (terms apply). Find more products eligible for trade-in.
|
|
There is a newer edition of this item:
|
Frequently Bought Together
Product details
|
More About the Author
Product Description
Review
"If your job requires investigating compromised Windows hosts, you must read Windows Forensic Analysis." "-Richard Bejtlich, Coauthor of Real Digital Forensics and Amazon.com Top 500 Book Reviewer"
"""The Registry Analysis chapter alone is worth the price of the book." "-Troy Larson, Senior Forensic Investigator of Microsoft's IT Security Group" "I also found that the entire book could have been written on just registry forensics. However, in order to create broad appeal, the registry section was probably shortened. You can tell Harlan has a lot more to tell." "-Rob Lee, Instructor and Fellow at the SANS Technology Institute, coauthor of Know Your Enemy: Learning About Security Threats, 2E"
Product Description
?If your job requires investigating compromised Windows hosts, you must read Windows Forensic Analysis.?
?Richard Bejtlich, Coauthor of Real Digital Forensics and Amazon.com Top 500 Book Reviewer
?The Registry Analysis chapter alone is worth the price of the book.?
?Troy Larson, Senior Forensic Investigator of Microsoft?s IT Security Group
?I also found that the entire book could have been written on just registry forensics. However, in order to create broad appeal, the registry section was probably shortened. You can tell Harlan has a lot more to tell.?
?Rob Lee, Instructor and Fellow at the SANS Technology Institute, coauthor of Know Your Enemy: Learning About Security Threats, 2E
Windows Forensic Analysis DVD Toolkit, 2E replaces the first edition as the most comprehensive and thorough resource on incident response and forensic analysis of Windows systems available, providing information and resources not available anywhere else. This book covers both live and post-mortem response collection and analysis methodologies, addressing material that is applicable to law enforcement, the federal government, students, and consultants. It also brings this material to the doorstep of system administrators, who are often the frontline troops when an incident occurs, but due to staffing and budgets do not have the necessary knowledge to respond effectively. The companion DVD contains significant new and updated materials (movies, spreadsheet, code, etc.) not available any place else, because they were created and maintained by the author.
In the two years since the first edition was originally published, cybercrime has continued to increase, and the criminals committing the crimes have continued to become more sophisticated. Analysts and investigators need up-to-date information to stay one step ahead, whether they?re examining a system for signs of an intrusion or a data breach. Also, state and federal legislation (e.g., CA-1386), as well as standards issued by regulatory bodies (e.g., PCI and HIPAA), are adding an entirely new dimension to what was once thought to be solely the domain of IT staff. Incident responders and forensic analysts now have a whole new set of questions to answer, and the only way to answer them is to be armed the latest and most up-to-date information and analysis techniques, all of which are covered in detail in this critical update of the best-selling resource.
* Based on reviewer feedback, the most popular chapter of the book, ?Registry Analysis,? is thoroughly upgraded and expanded with a completely new set of unique tools developed and demonstrated by the author.
* A brand-new chapter, ?Forensic Analysis on a Budget,? collects freely available tools that are essential for small labs, state (or below) law enforcement, and educational organizations that can?t afford bloated and expensive application suites.
* Completely new chapter ?Tying It All Together? puts the otherwise isolated concepts in the book into context of incident response and addresses frequent questions posed in public lists and forums.
* Once something a responder should do, developments in 2008 made Windows memory analysis a more sophisticated and important requirement that is given increased detail and focus in the new version of the chapter in this book.
* New pedagogical elements??Lessons from the Field,? ?Case Studies,? and ?War Stories??present real-life experiences from the trenches by an expert in the trenches, making the material real and showing the why behind the how.
* The companion DVD contains new, significant, and unique materials (movies, spreadsheet, code, etc.) not available any place else, because they were created by the author.
?Richard Bejtlich, Coauthor of Real Digital Forensics and Amazon.com Top 500 Book Reviewer
?The Registry Analysis chapter alone is worth the price of the book.?
?Troy Larson, Senior Forensic Investigator of Microsoft?s IT Security Group
?I also found that the entire book could have been written on just registry forensics. However, in order to create broad appeal, the registry section was probably shortened. You can tell Harlan has a lot more to tell.?
?Rob Lee, Instructor and Fellow at the SANS Technology Institute, coauthor of Know Your Enemy: Learning About Security Threats, 2E
Windows Forensic Analysis DVD Toolkit, 2E replaces the first edition as the most comprehensive and thorough resource on incident response and forensic analysis of Windows systems available, providing information and resources not available anywhere else. This book covers both live and post-mortem response collection and analysis methodologies, addressing material that is applicable to law enforcement, the federal government, students, and consultants. It also brings this material to the doorstep of system administrators, who are often the frontline troops when an incident occurs, but due to staffing and budgets do not have the necessary knowledge to respond effectively. The companion DVD contains significant new and updated materials (movies, spreadsheet, code, etc.) not available any place else, because they were created and maintained by the author.
In the two years since the first edition was originally published, cybercrime has continued to increase, and the criminals committing the crimes have continued to become more sophisticated. Analysts and investigators need up-to-date information to stay one step ahead, whether they?re examining a system for signs of an intrusion or a data breach. Also, state and federal legislation (e.g., CA-1386), as well as standards issued by regulatory bodies (e.g., PCI and HIPAA), are adding an entirely new dimension to what was once thought to be solely the domain of IT staff. Incident responders and forensic analysts now have a whole new set of questions to answer, and the only way to answer them is to be armed the latest and most up-to-date information and analysis techniques, all of which are covered in detail in this critical update of the best-selling resource.
* Based on reviewer feedback, the most popular chapter of the book, ?Registry Analysis,? is thoroughly upgraded and expanded with a completely new set of unique tools developed and demonstrated by the author.
* A brand-new chapter, ?Forensic Analysis on a Budget,? collects freely available tools that are essential for small labs, state (or below) law enforcement, and educational organizations that can?t afford bloated and expensive application suites.
* Completely new chapter ?Tying It All Together? puts the otherwise isolated concepts in the book into context of incident response and addresses frequent questions posed in public lists and forums.
* Once something a responder should do, developments in 2008 made Windows memory analysis a more sophisticated and important requirement that is given increased detail and focus in the new version of the chapter in this book.
* New pedagogical elements??Lessons from the Field,? ?Case Studies,? and ?War Stories??present real-life experiences from the trenches by an expert in the trenches, making the material real and showing the why behind the how.
* The companion DVD contains new, significant, and unique materials (movies, spreadsheet, code, etc.) not available any place else, because they were created by the author.
Inside This Book
(Learn More)
Tags Customers Associate with This Product(What's this?)Click on a tag to find related items, discussions, and people.
|
What Other Items Do Customers Buy After Viewing This Item?
Customer Reviews
Most Helpful Customer Reviews
2 of 2 people found the following review helpful
Format:Paperback
If you are involved in Computer Forensics this book is the diamond in your library. The author obviously has a great knowledge of, and passion for, the subject, and this comes across in his book. Explanations are precise and understandable and the tools on the accompanying DVD are a great addition to any toolkit.
1 of 1 people found the following review helpful
Format:Paperback
This is an essential purchase if you are a student of Computer Forensics or an actual computer forensic examiner.Its one of those books you need close at hand.
Its an excellent source of knowledge concerning registry analysis especially.
Its an excellent source of knowledge concerning registry analysis especially.
Format:Paperback
Superb to assist in knowing the nuts and bolts of windows and being able Analysis it too
Would you like to see more reviews about this item?
Were these reviews helpful?
Let us know
Listmania!
Look for similar items by category
Look for similar items by subject
Feedback
- Would you like to update product info or give feedback on images?
- I am the Author, and I want to comment on my book.
- I am the Publisher, and I want to comment on this book.
|
