Windows forensic analysis toolkit : advanced analysis techniques for Windows 7 / Harlan Carvey
Material type:
TextPublication details: Rockland, Massachusetts : Syngress, c2012Edition: Third editionDescription: xxi, 296 pages : illustrations ; 24 cmISBN: - 9781597497275
- HV 8079.C65 .C37 2012
Books
| Item type | Current library | Home library | Collection | Call number | Copy number | Status | Date due | Barcode | |
|---|---|---|---|---|---|---|---|---|---|
|
Books
|
National University - Manila | LRC - Main General Circulation | Computer Science | GC HV 8079.C65 .C37 2012 (Browse shelf(Opens below)) | c.1 | Available | NULIB000006721 |
Browsing LRC - Main shelves, Shelving location: General Circulation, Collection: Computer Science Close shelf browser (Hides shelf browser)
| No cover image available | No cover image available |
|
|
|
|
|
||
| GC HF 5548.115 .C45 1990 Introduction to the microcomputer and its applications : WordStar / | GC HF 5548.115 .T46 1991 Learning WordPerfect 5.1 / | GC HF 5548 .B73 2008 Problem-solving cases in Microsoft Access and Excel / | GC HV 8079.C65 .C37 2012 Windows forensic analysis toolkit : advanced analysis techniques for Windows 7 / | GC HV 8079.C65 .D54 2021 Digital forensics explained / | GC JF 799 .E443 2016 Electronic participation : 8th IFIP WG 8.5 International Conference, EPART 2016, Guimares, Portugal, September 5-8, 2016 proceedings / | GC JN 97.A56 .E63 2013 E- participation in Southern Europe and the Balkans : issues of democracy and participation via electronic media / |
Includes bibliographical references.
Chapter 1 Analysis Concepts -- Chapter 2 Immediate response -- Chapter 3 Volume shadow copies -- Chapter 4 File analysis -- Chapter 5 Registry analysis -- Chapter 6 Malware detection -- Chapter 7 Timeline analysis -- Chapter 8 Application analysis.
Windows Forensic Analysis Toolkit: Advanced Analysis Techniques for Windows 7 provides an overview of live and postmortem response collection and analysis methodologies for Windows 7. It considers the core investigative and analysis concepts that are critical to the work of professionals within the digital forensic analysis community, as well as the need for immediate response once an incident has been identified. Organized into eight chapters, the book discusses Volume Shadow Copies (VSCs) in the context of digital forensics and explains how analysts can access the wealth of information available in VSCs without interacting with the live system or purchasing expensive solutions. It also describes files and data structures that are new to Windows 7 (or Vista), Windows Registry Forensics, how the presence of malware within an image acquired from a Windows system can be detected, the idea of timeline analysis as applied to digital forensic analysis, and concepts and techniques that are often associated with dynamic malware analysis. Also included are several tools written in the Perl scripting language, accompanied by Windows executables. This book will prove useful to digital forensic analysts, incident responders, law enforcement officers, students, researchers, system administrators, hobbyists, or anyone with an interest in digital forensic analysis of Windows 7 systems. Timely 3e of a Syngress digital forensic bestseller Updated to cover Windows 7 systems, the newest Windows version New online companion website houses checklists, cheat sheets, free tools, and demos.
There are no comments on this title.