Categories
Technical
-- Database/SQL
-- Multimedia
-- Internet/Networking
-- Operating System
-- Programming
-- Security/Hacking
-- Science/Engineering
-- Web/HTML/CSS/Ajax
-- Unix/Linux
-- Windows
-- Mac OS X
-- Office
-- Perl/PHP/Python
-- C/C++/C#
-- .NET
-- Java
-- Hardware
-- Game Development
-- Embedded Systems
-- Graphics and Design
-- Network Programming
Study
Novel
Nonfiction
Health
Tutorial
Entertainment
Business
Magazine
Arts & Design
Audiobooks & Video Training
Cultures & Languages
Family & Home
Law & Politics
Lyrics & Music
Software Related
eBook Torrents
Uncategorized
-- Database/SQL
-- Multimedia
-- Internet/Networking
-- Operating System
-- Programming
-- Security/Hacking
-- Science/Engineering
-- Web/HTML/CSS/Ajax
-- Unix/Linux
-- Windows
-- Mac OS X
-- Office
-- Perl/PHP/Python
-- C/C++/C#
-- .NET
-- Java
-- Hardware
-- Game Development
-- Embedded Systems
-- Graphics and Design
-- Network Programming
Study
Novel
Nonfiction
Health
Tutorial
Entertainment
Business
Magazine
Arts & Design
Audiobooks & Video Training
Cultures & Languages
Family & Home
Law & Politics
Lyrics & Music
Software Related
eBook Torrents
Uncategorized
Share With Friends
Archive by Date
2012-08-06
2012-08-05
2012-08-04
2012-08-03
2012-08-02
2012-08-01
2012-07-31
2012-07-30
2012-07-29
2012-07-28
2012-08-05
2012-08-04
2012-08-03
2012-08-02
2012-08-01
2012-07-31
2012-07-30
2012-07-29
2012-07-28
Search Tag
Tyvenes
Escadrille
Cautivo
VEIL
Gottingen
Binkiewicz
Placebo
locks
Moldau
Burglar
Islandais
Najoua
遗传
Kiya
Engle
Kacvinsky
Giphart
Rosenkreuzer
intrusion
Orson
Immortals
7671
Rochereau
Steinem
classes
Pret
Yachting
Guerrier
compendium
Himanshu
VISUAL
ROULETTE
Haakan
Stuffs
Corridor
Edits
Aplicado
Buurman
Datacenter
boundaries
Judgements
Toads
Vlast
ember
Comradeship
Dendrons
Aisling
Sallah
Sized
Jong
Newest
Learning Core Audio: A Hands-On Guide to Audio Programming for Mac and iOS
Introduction to Programming with Fortran: with coverage of Fortran 90, 95, 2003 and 77
Introduction to Programming with Fortran - with coverage of Fortran 90, 95, 2003 and 77
MATLAB - Modelling, Programming and Simulations
-MATLAB: Modelling, Programming and Simulations- ed. by Emilson Pereira Leite (Repost)
Introduction to Programming with Fortran: with coverage of Fortran 90, 95, 2003 and 77 [Repost]
An Introduction to Programming and Numerical Methods in MATLAB [Repost]
"MATLAB: Modelling, Programming and Simulations" ed. by Emilson Pereira Leite (Repost)
Programming Social Applications: Building Viral Experiences with OpenSocial, OAuth, OpenID, and Distributed Web... (repost)
MATLAB Programming for Engineers (2nd edition) [Repost]
Sriranga Veeraraghavan, "Sams Teach Yourself Shell Programming in 24 Hours" (Repost)
Programming Computer Vision with Python - Tools and algorithms for analyzing images
Matlab: A Practical Introduction to Programming and Problem Solving (2nd edition) [Repost]
ECOOP 2011 - Object-Oriented Programming
Mobile JavaScript Application Development - Bringing Web Programming to Mobile Devices [Paperback]
Concurrent Programming on Windows (repost)
Expert WSS 3.0 and MOSS 2007 Programming (repost)
Embedded Software Design and Programming of Multiprocessor System-on-Chip (repost)
OpenCV 2 Computer Vision Application Programming Cookbook
Programming Computer Vision with Python: Tools and algorithms for analyzing images
Introduction to Programming with Fortran: with coverage of Fortran 90, 95, 2003 and 77
Introduction to Programming with Fortran - with coverage of Fortran 90, 95, 2003 and 77
MATLAB - Modelling, Programming and Simulations
-MATLAB: Modelling, Programming and Simulations- ed. by Emilson Pereira Leite (Repost)
Introduction to Programming with Fortran: with coverage of Fortran 90, 95, 2003 and 77 [Repost]
An Introduction to Programming and Numerical Methods in MATLAB [Repost]
"MATLAB: Modelling, Programming and Simulations" ed. by Emilson Pereira Leite (Repost)
Programming Social Applications: Building Viral Experiences with OpenSocial, OAuth, OpenID, and Distributed Web... (repost)
MATLAB Programming for Engineers (2nd edition) [Repost]
Sriranga Veeraraghavan, "Sams Teach Yourself Shell Programming in 24 Hours" (Repost)
Programming Computer Vision with Python - Tools and algorithms for analyzing images
Matlab: A Practical Introduction to Programming and Problem Solving (2nd edition) [Repost]
ECOOP 2011 - Object-Oriented Programming
Mobile JavaScript Application Development - Bringing Web Programming to Mobile Devices [Paperback]
Concurrent Programming on Windows (repost)
Expert WSS 3.0 and MOSS 2007 Programming (repost)
Embedded Software Design and Programming of Multiprocessor System-on-Chip (repost)
OpenCV 2 Computer Vision Application Programming Cookbook
Programming Computer Vision with Python: Tools and algorithms for analyzing images
Useful Links
Programming Windows Forensic Analysis, Second Edition
Posted on 2010-03-16
|
More Harlan Carvey, "Windows Forensic Analysis, Second Edition" "If your job requires investigating compromised Windows hosts, you must read Windows Forensic Analysis." -Richard Bejtlich, Coauthor of Real Digital Forensics and Amazon.com Top 500 Book Reviewer "The Registry Analysis chapter alone is worth the price of the book." -Troy Larson, Senior Forensic Investigator of Microsoft's IT Security Group "I also found that the entire book could have been written on just registry forensics. However, in order to create broad appeal, the registry section was probably shortened. You can tell Harlan has a lot more to tell." -Rob Lee, Instructor and Fellow at the SANS Technology Institute, coauthor of Know Your Enemy: Learning About Security Threats, 2E Author Harlan Carvey has brought his best-selling book up-to-date to give you: the responder, examiner, or analyst the must-have tool kit for your job. Windows is the largest operating system on desktops and servers worldwide, which mean more intrusions, malware infections, and cybercrime happen on these systems. Windows Forensic Analysis DVD Toolkit, 2E covers both live and post-mortem response collection and analysis methodologies, addressing material that is applicable to law enforcement, the federal government, students, and consultants. The book is also accessible to system administrators, who are often the frontline when an incident occurs, but due to staffing and budget constraints do not have the necessary knowledge to respond effectively. The book's companion DVD contains significant new and updated materials (movies, spreadsheet, code, etc.) not available any place else, because they are created and maintained by the author. Best-Selling Windows Digital Forensic book completely updated in this 2nd Edition Learn how to Analyze Data During Live and Post-Mortem Investigations DVD Includes Custom Tools, Updated Code, Movies, and Spreadsheets! Summary: There is no substitute for this book Rating: 5 I read and reviewed the 1st Ed of this book in July 2007, and I just finished reading Windows Forensic Analysis 2nd Ed (WFA2E) this weekend. If your job involves investigating Windows systems, you must read this book. It's as simple as that. There is no substitute for this book. It also perfectly complements other solid forensics works already published. The three main reasons why I liked the 1st Ed hold for the 2nd Ed. The subject matter is exactly what I wanted to read. WFA2E introduces a vast number of tools to help investigators implement the concepts explained by the author. Harlan brings a lot of experience to WFA. Of these three, I really appreciate Harlan's experience. He is constantly "in the fight" so he knows what works and what doesn't. He's been around so long that he knows what he's talking about. If he encounters a problem, he can either try fixing it himself or he is friends with someone who can work the issue. All of these characteristics shine in WFA2E. I expect to see a 3rd Ed of this book in a few years, incorporating more Windows Vista and Windows 7 material. It might also be helpful to consider techniques for Windows Server and Mobile platforms in the 3rd Ed. Regardless, I will look forward to that book when it arrives because I enjoyed WFA1E and WFA2E so much. Summary: The best forensic book currently available Rating: 5 I've started reading or read a number of forensic books in the past two years. Though I have yet to read a specific Operating System forensic book, most have generally focused on Windows as the choice for forensic analysis. Of all the books that I have read, I would have to say that by far Windows Forensic Analysis DVD Toolkit second edition is the best. The author is very thorough without beating a single tool to death. The author covers numerous tools, but continues to stress that having information from one tool does not give the investigator the `smoking gun' to solving the case. He stresses repeatedly that this is just adding another tool to the investigator's toolbox. Many books are simply an attempt to sell their book by declaring that if you follow: step one, followed by step two, followed by step three etc. that you will suddenly be a master forensic investigator or incident handler. Harlan Carvery never says that reading this book will make you an expert, only that he hopes to enlighten the reader to new tools and techniques. The author makes it very clear that each tool is valuable, but the reader should find the tools that suite their own need and get the experience necessary to analyze the output. The book jumps straight into the discussion of volatile data and the importance of capturing it as close to the instance of compromise as possible. I was pleased to see that the author made a point of emphasizing this. There is still a mindset in many situations that pulling the plug is the first thing to accomplish. The first three chapters are a statement to the importance placed on collecting and analyzing the volatile portion of the incident. Though technically the first two chapters also cover information to tie in the remaining chapters there is always that focus of maintaining data as close to the point of compromise as possible. The next three chapters cover the static files and registry that a Forensic Analyst will have to review and analyze. The author covers numerous tools as well as providing his tools and his preferences for use. The last three chapters cover rootkits, tying it together with case studies and then finally Forensic Analysis on a budget. Throughout the book the author makes references to papers, websites and other books that will provide a much more indepth discussion of the topics. In every chapter he provides a source for more up-to-date software than what is provided on the DVD. The author includes numerous tools that are his personal scripts or scripts that he has modified for his use. For the most part his scripts are all Perl based, but again the author shows his flexibility and understanding when he explains why his tools are Perl and not something else. At no point does the author take a "this is the only left way to do it" attitude. It is refreshing to see an unbiased book that is primarily Windows oriented. With all that being said I would say that grammatical editing could have been a little better. Even with these errors the book was definitely worth buying. We have a copy in our office and I am buying a copy for my own personal use. I would say that if you are doing Windows forensics or have an interest in learning about the current trends in Windows forensics you need to pick up a copy. It will be an invaluable resource. Download Not all books on / appear on the homepage. In order not to miss many of them follow Download Link (Ebooks section) (see top of each page on AH) and visit too :) Thank you for Post
Rating:
2.5 out of 5 by Book123 |
Download Links | |
Server | Status |
---|---|
Direct Download Link 1 | Alive |
Direct Download Link 2 | Alive |
Download Link (Depositfiles.com) | Alive |
Download Link (Mirror) | Alive |
Buy This Book at Best Price >> |
Like this article?! Give us +1: