Computer Forensics JumpStart
Computer Forensics JumpStart
ISBN: 0470931663
EAN: 2147483647
EAN: 2147483647
Year: 2004
Pages: 153
Pages: 153
- Table of Contents
- BackCover
- Computer Forensics JumpStart
- Introduction
- Who Should Read This Book
- What This Book Covers
- Making the Most of This Book
- Chapter 1: The Need forComputer Forensics
- Defining Computer Forensics
- Real-Life Examples of Computer Crime
- Corporate versus Law Enforcement Concerns
- Training
- What Are Your Organization s Needs?
- Terms to Know
- Review Questions
- Chapter 2: Preparation-What toDo Before You Start
- Know Your Hardware
- Know Your Operating System
- Know Your Limits
- Develop Your Incident Response Team
- Terms to Know
- Review Questions
- Chapter 3: ComputerEvidence
- What Is Computer Evidence?
- Search and Seizure
- Chain of Custody
- Evidence Admissibility in a Court of Law
- Leave No Trace
- Terms to Know
- Review Questions
- Chapter 4: CommonTasks
- Evidence Identification
- Evidence Preservation
- Evidence Analysis
- Evidence Presentation
- Terms to Know
- Review Questions
- Chapter 5: Capturingthe Data Image
- Full Volume Images
- Partial Volume Image
- ImagingCapture Tools
- Terms to Know
- Review Questions
- Chapter 6: Extracting Information from Data
- What Are You Looking For?
- How People Think
- Picking the Low-Hanging Fruit
- Hidden Evidence
- Trace Evidence
- Terms to Know
- Review Questions
- Chapter 7: Passwords andEncryption
- Passwords
- Encryption Basics
- Common Encryption Practices
- Strengths and Weaknesses of Encryption
- Handling Encrypted Data
- Terms to Know
- Review Questions
- Chapter 8: Common ForensicsTools
- Disk Imaging and Validation Tools
- Forensics Tools
- Your Forensics Toolkit
- Terms to Know
- Review Questions
- Chapter 9: Pulling It AllTogether
- Begin with a Concise Summary
- Document Everything, Assume Nothing
- Formulating the Report
- Sample Analysis Reports
- Using Software to Generate Reports
- Terms to Know
- Review Questions
- Chapter 10: How to Testify inCourt
- Preparation Is Everything
- Appearance Matters
- What Matters Is What They Hear
- Know Your Forensics Process and Tools
- Say Only What Is Necessary
- Keep It Simple
- Be Ready to Justify Every Step
- Summary
- Terms to Know
- Review Questions
- Appendix A: Answers to Review Questions
- Chapter 2
- Chapter 3
- Chapter 4
- Chapter 5
- Chapter 6
- Chapter 7
- Chapter 8
- Chapter 9
- Chapter 10
- Appendix B: ForensicsResources
- Organizations
- Publications
- Services
- Software
- Training
- Appendix C: ForensicsCertifications
- Advanced Information Security (AIS)
- Certified Computer Examiner (CCE)
- Certified Cyber-Crime Expert(C3E)
- Certified Information Forensics Investigator (CIFI)
- Certified Computer Crime Investigator (CCCI)
- Certified Computer Forensic Technician (CCFT)
- Certified Forensic Computer Examiner (CFCE)
- Certified Information Systems Auditor (CISA)
- EnCase Certified Examiner Program
- GIAC Certified Forensic Analyst (GCFA)
- Professional Certified Investigator (PCI)
- Appendix D: ForensicsTools
- Password-Cracking Utilities
- CD Analysis Utilities
- Metadata Viewer Utility
- Graphic Viewing Utility
- Forensics Hardware Devices
- Computer Forensics Training
- Glossary
- D-E
- F-I
- J-P
- R-S
- T-Z
- Index
- Index_A
- Index_B
- Index_C
- Index_D
- Index_E
- Index_F
- Index_G
- Index_H
- Index_I
- Index_J
- Index_K
- Index_L
- Index_M
- Index_N
- Index_O
- Index_P
- Index_Q
- Index_R
- Index_S
- Index_T
- Index_U
- Index_V
- Index_W
- Index_X
- Index_Z
- List of Sidebars
Computer Forensics JumpStart
ISBN: 0470931663
EAN: 2147483647
EAN: 2147483647
Year: 2004
Pages: 153
Pages: 153