Flylib.com
Windows Forensics: The Field Guide for Corporate Computer Investigations
Windows Forensics: The Field Guide for Corporate Computer Investigations
ISBN: 0470038624
EAN: 2147483647
Year: 2006
Pages: 71
Authors:
Chad Steel
BUY ON AMAZON
Windows Forensics: The Field Guide for Corporate Computer Investigations
Back Cover
About
Chapter 1: Windows Forensics
The Corporate Computer Forensic Analyst
Windows Forensics
People, Processes, and Tools
Computer Forensics: Today and Tomorrow
Additional Resources
Chapter 2: Processing the Digital Crime Scene
Identify the Scene
Perform Remote Research
Secure the Crime Scene
Document the Scene
Process the Scene for Physical Evidence
Process the Scene for Electronic Evidence
Chain of Custody
Best Evidence
Working with Law Enforcement
Additional Resources
Chapter 3: Windows Forensics Basics
History and Versions
Non-Volatile Storage
Additional Resources
Chapter 4: Partitions and File Systems
Windows File Systems
Additional Resources
Chapter 5: Directory Structure and Special Files
Windows 9x
Additional Resources
Chapter 6: The Registry
Registry Basics
Registry Analysis
Advanced Registry Analysis
Additional Resources
Chapter 7: Forensic Analysis
Chapter 8: Live System Analysis
Covert Analysis
Overt Analysis
Additional Resources
Chapter 9: Forensic Duplication
Hard Disk Duplication
Log File Duplication
Additional Resources
Chapter 10: File System Analysis
Hash Analysis
File Recovery
Special Files
Additional Resources
Chapter 11: Log File Analysis
Internet Logs
Additional Resources
Chapter 12: Internet Usage Analysis
Peer-to-Peer Networking
Instant Messaging
Additional Resources
Chapter 13: Email Investigations
OutlookOutlook Express
Lotus Notes
Additional Resources
Appendix A: Sample Chain of Custody Form
Appendix B: Master Boot Record Layout
Appendix C: Partition Types
Appendix D: FAT32 Boot Sector Layout
Appendix E: NTFS Boot Sector Layout
Appendix F: NTFS Metafiles
Appendix G: Well-Known SIDs
List of Figures
List of Tables
List of Sidebars
Windows Forensics: The Field Guide for Corporate Computer Investigations
ISBN: 0470038624
EAN: 2147483647
Year: 2006
Pages: 71
Authors:
Chad Steel
BUY ON AMAZON
High-Speed Signal Propagation[c] Advanced Black Magic
Summary of Breakpoints Between Regions
Implementation of Frequency-Domain Simulation
100-Ohm Balanced Twisted-Pair Cabling
Extra Fries, Please
Daisy-Chain Clock Distribution
Snort Cookbook
Logging to Multiple Locations
Ignoring Some Alerts
Basic Rules You Shouldnt Leave Home Without
Detecting Fragmentation Attacks and Fragment Reassembly with Frag2
Performing Forensics Using Snort
Excel Scientific and Engineering Cookbook (Cookbooks (OReilly))
Entering Data
Using Loops
Calculating Confidence Intervals
Using Excel to Help Solve Problems Formulated Using the Finite Element Method
Introduction
C & Data Structures (Charles River Media Computer Engineering)
The printf Function
The scanf Function
Function
Recursion
Miscellaneous Problems
File System Forensic Analysis
Booting Process
Bibliography
Summary
Superblock
Bibliography
Java Concurrency in Practice
Thread Safety
Locking
Documenting Synchronization Policies
Building an Efficient, Scalable Result Cache
Testing for Correctness
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy
This website uses cookies. Click
here
to find out more.
Accept cookies