Book of the Month – Windows Forensic Analysis

Here is the gem of Forensics book from the expert, appealing to all level of readers, beginners & experts alike. Windows still being most used platform and hence more susceptible to crime incidents, the knowledge of Windows forensic analysis is must for any investigator.

In this direction, this book covers everything that a investigator needed to bring the incident to courtroom through live as well as offline forensic analysis.

.

.

Here is the table of contents,

  • Chapter 1: Live Response: Collecting Volatile Data
  • Chapter 2: Live Response: Analyzing Volatile Data
  • Chapter 3: Windows Memory Analysis
  • Chapter 4: Registry Analysis
  • Chapter 5: File Analysis
  • Chapter 6: Executable File Analysis
  • Chapter 7: Rootkits and Rootkit Detection
  • Chapter 8: Tying It All Together
  • Chapter 9: Forensic Analysis on a Budget

It start with live analysis which deals with gathering and analysis of volatile system data which is the need of the hour for any forensic investigator. Later it goes into detail with each chapter describing every important component of operating system such as memory, file system, registry and executable file analysis. Each of the chapters are well illustrated with examples and best of the tools (including open source as well as commerical). Especially chatper on registry analysis is filled with unmatchable content and it deserves special salute to Harlan. Chapter 8 contains interesting case studies explaining different forensic scenarios which strengthens the practical awareness of the reader.

With plenty of tools available in the market, this book will guide you to use the right tool at the right time for the right purpose. This is what plays great role in making of the expert forensic investigator.

The accompanying DVD is valuable resource as it contains the tools described in this book which is very handy for simultaneously performing hands-on session while reading.

In short, Harlan has produced a master piece on the forensic subject and it is highly recommended for any one willing to acquire mastery over this field.

Ebook Link – http://www.eazyupload.net/download/ifBzvYXn/159749156X.zip.htm

.

Similar posts
  • SecurityXploded Mentorship Programme ... I am writing this blog to share my SecurityXploded Student Mentorship Programme experience with the future students of this programme. My mentorship programme started last year in August when I was in 2nd year of MS at IIIT-Allahabad. I knew about SecurityXploded community since I used to follow their blogs, training programmes and security tools [...]
  • Code Injection and API Hooking Techni... Hooking covers a range of techniques used for many purposes like debugging, monitoring, intercepting messages, extending functionality etc. Hooking is also used by a lot of rootkits to camouflage themselves on the system. Rootkits use various hooking techniques when they have to hide a process, hide a network port, redirect file writes to some different [...]
  • Announcement – SecurityXploded ... From the past two years we are working actively on couple of projects to support the security community. As you all may already know that we have successfully completed our reversing and malware analysis training programme and we are very glad that it was very helpful for everyone. In my opinion the success of any [...]
  • Advanced Malware Analysis Training Se... Here is the quick update on this month’s Local Security meet (SX/Null/G4H/owasp) and our advanced malware training session on (Part 2) Dissecting the HeartBeat  RAT Functionalities   This is part of our FREE ‘Advanced Malware Analysis Training’ series started from Dec 2012.       In this extended session, I explained “Decrypting various Communications Of HeartBeat [...]
  • Advanced Malware Analysis Training Se...   Here is the quick update on this month’s Local Security meet (SX/Null/G4H/owasp) and our advanced malware training session on (Part 1) Reversing & Decrypting Communications of HeartBeat RAT This is part of our FREE ‘Advanced Malware Analysis Training’ series started from Dec 2012.       In this extended session, I explained “Decrypting The [...]

Leave a Reply

Our Company

Follow us on Facebook


Join Mailing List

Get direct access to our expert trainers or mingle with like minded security folks in our mailing list