By Cory Altheide, Harlan Carvey
ISBN: 9781597495868
Pages: 400
Trim: 7.5 in x 9.25 in
Publication Date: May 2011
Cory Altheide
Security Engineer at Google
Harlan Carvey
Internationally renowned Forensic Analyst
ISBN: 9781597495868
Pages: 400
Trim: 7.5 in x 9.25 in
Publication Date: May 2011
Description
Based on the use of open source tools, this book lends itself to many organizations as well as students who do not have means to purchase new tools for different investigations.Well known forensic methods are demonstrated using open-source computer forensic tools (Sleuthkit, Foremost, dcdd, pyag, etc.) for examining a wide range of target systems (Windows, Mac, Linux, Unix, etc.).The digital forensics industry is growing a rapid pace and this book is perfect for someone entering the field that does not have access to corporate tools.- Written by world-renowned forensic practitioners
- Covers open source forensics tools for all major systems: Windows, Mac, and Linux
- Uses the most current examination and analysis techniques in the field
About the Authors
Cory Altheide
Security Engineer at Google
Harlan Carvey
Internationally renowned Forensic Analyst
Contents
- Chapter 1: Digital Forensics with Open Source Tools
Chapter 2 The Open Source Examination Platform
Chapter 3: Disk & File System Analysis
Chapter 4 Windows Systems and Artifacts
Chapter 5: Linux Systems & Artifacts
Chapter 6: Mac OS X Systems & Artifacts
Chapter 7: Internet Artifacts
Chapter 8: File Analysis
Chapter 9: Automating Analysis & Extending Capabilities
Appendix A: Free, Non-Open Tools of Note
0 意見: