Overview
Windows Forensic Analysis DVD Toolkit, Second Edition, is a completely updated and expanded version of Harlan Carvey's best-selling forensics book on incident response and investigating cybercrime on Windows systems. With this book, you will learn how to analyze data during live and post-mortem investigations. New to this edition is Forensic Analysis on a Budget, which collects freely available tools that are essential for small labs, state (or below) law enforcement, and educational organizations. The book also includes new pedagogical elements, Lessons from the Field, Case Studies, and War Stories that present real-life experiences by an expert in the trenches, making the material real and showing the why behind the how. The companion DVD contains significant, and unique, materials (movies, spreadsheet, code, etc.) not available anyplace else because they were created by the author. This book will appeal to digital forensic investigators, IT security professionals, engineers, and system administrators as well as students and consultants.
Full Product Details
Author: Harlan Carvey (DFIR analyst, presenter, and open-source tool author)
Publisher: Syngress Media,U.S.
Imprint: Syngress Media,U.S.
Edition: 2nd edition
Dimensions:
Width: 19.10cm
, Height: 3.00cm
, Length: 23.50cm
Weight: 0.903kg
ISBN: 9781597494229
ISBN 10: 1597494224
Pages: 512
Publication Date: 22 September 2009
Audience:
Professional and scholarly
,
Professional & Vocational
Replaced By: 9781597497275
Format: Paperback
Publisher's Status: Out of Print
Availability: In Print
Limited stock is available. It will be ordered for you and shipped pending supplier's limited stock.
Reviews
?If your job requires investigating compromised Windows hosts, you must read Windows Forensic Analysis.?<br>?Richard Bejtlich, Coauthor of Real Digital Forensics and Amazon.com Top 500 Book Reviewer <br>?The Registry Analysis chapter alone is worth the price of the book.?<br>?Troy Larson, Senior Forensic Investigator of Microsoft's IT Security Group <br>?I also found that the entire book could have been written on just registry forensics. However, in order to create broad appeal, the registry section was probably shortened. You can tell Harlan has a lot more to tell.?<br>?Rob Lee, Instructor and Fellow at the SANS Technology Institute, coauthor of Know Your Enemy: Learning About Security Threats, 2E
<p> If your job requires investigating compromised Windows hosts, you must read Windows Forensic Analysis. -Richard Bejtlich, Coauthor of Real Digital Forensics and Amazon.com Top 500 Book Reviewer <p> The Registry Analysis chapter alone is worth the price of the book. -Troy Larson, Senior Forensic Investigator of Microsoft's IT Security Group I also found that the entire book could have been written on just registry forensics. However, in order to create broad appeal, the registry section was probably shortened. You can tell Harlan has a lot more to tell. -Rob Lee, Instructor and Fellow at the SANS Technology Institute, coauthor of Know Your Enemy: Learning About Security Threats, 2E
Author Information
Harlan Carvey (CISSP) is a Vice President of Advanced Security Projects with Terremark Worldwide, Inc. Terremark is a leading global provider of IT infrastructure and cloud computing services, based in Miami, FL. Harlan is a key contributor to the Engagement Services practice, providing disk forensics analysis, consulting, and training services to both internal and external customers. Harlan has provided forensic analysis services for the hospitality industry, financial institutions, as well as federal government and law enforcement agencies. Harlan's primary areas of interest include research and development of novel analysis solutions, with a focus on Windows platforms. Harlan holds a bachelor's degree in electrical engineering from the Virginia Military Institute and a master's degree in the same discipline from the Naval Postgraduate School. Harlan resides in Northern Virginia with his family.
