Widup | Computer Forensics and Digital Investigation with EnCase Forensic v7 | Buch | 978-0-07-180791-3 | www2.sack.de

Buch, Englisch, 448 Seiten, Format (B × H): 191 mm x 235 mm, Gewicht: 834 g

Widup

Computer Forensics and Digital Investigation with EnCase Forensic v7


Erscheinungsjahr 2014
ISBN: 978-0-07-180791-3
Verlag: McGraw-Hill Education

Buch, Englisch, 448 Seiten, Format (B × H): 191 mm x 235 mm, Gewicht: 834 g

ISBN: 978-0-07-180791-3
Verlag: McGraw-Hill Education

Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product.Conduct repeatable, defensible investigations withEnCase Forensic v7Maximize the powerful tools and features of the industry-leading digital investigation software. Computer Forensics and Digital Investigation withEnCase Forensic v7 reveals, step by step, how to detect illicit activity, capture and verify evidence, recover deleted and encrypted artifacts, prepare court-ready documents, and ensure legal and regulatory compliance. The book illustrates each concept using downloadable evidence from the National Institute of Standards and Technology CFReDS. Customizable sample procedures are included throughout this practical guide. - Install EnCase Forensic v7 and customize the user interface
- Prepare your investigation and set up a new case
- Collect and verify evidence from suspect computers and networks
- Use the EnCase Evidence Processor and Case Analyzer
- Uncover clues using keyword searches and filter results through GREP
- Work with bookmarks, timelines, hash sets, and libraries
- Handle case closure, final disposition, and evidence destruction
- Carry out field investigations using EnCase Portable
- Learn to program in EnCase EnScript

Widup Computer Forensics and Digital Investigation with EnCase Forensic v7 jetzt bestellen!

Autoren/Hrsg.

Widup, Suzanne

Fachgebiete

Weitere Infos & Material

Part 1: Preparing for the Forensics Function
1. The Road to Readiness
2. Getting started
3. Basic Concepts

Part 2: Beginning with EnCase Forensic
4. Your First case
5.Working in the Evidence Browser
6. Diving into the View Pane

Part 3: Looking for Evidence
7. Searching for Clues
8. Further Inspection
9. Digital Dumpster Diving

Part 4: Putting it All Together
10. Determining What Happened
11. Refining the Results
12. An EnScript Primer

Part 5: Completed Investigations
13. Reporting
14. Closing the Case

Appendix A: Rosetta Stone for Windows Operating Systems
Appendix B: EnCase Keyboard Short Cuts
Appendix C: EnScript Classes Hierarchy
Appendix D: Resources for Further Information

Widup, Suzanne
Suzanne Widup, ACE, CISSP, GSEC, GCFA: GIAC, is the Founder of the Digital Forensics Association and an information security consultant. She has deep experience in security engineering and analysis in roles at Safeway and PG&E as well as in Unix system administration in roles at Verizon Wireless, Clorox, and PeopleSoft. Widup’s articles have been published in NetworkWorld and she is a regular speaker at SecureWorld Expo.

Suzanne Widup has a wealth of experience in security engineering and analysis with a specialty in digital forensics in large enterprise environments. Her current work involves data breach research, including tracking publicly disclosed data breaches in the VERIS Community Database (VCDB). Suzanne is the founder of theDigital Forensics Association.

Ihre Fragen, Wünsche oder Anmerkungen
Vorname*
Nachname*
Ihre E-Mail-Adresse*
Kundennr.
Ihre Nachricht*
Lediglich mit * gekennzeichnete Felder sind Pflichtfelder.
Wenn Sie die im Kontaktformular eingegebenen Daten durch Klick auf den nachfolgenden Button übersenden, erklären Sie sich damit einverstanden, dass wir Ihr Angaben für die Beantwortung Ihrer Anfrage verwenden. Selbstverständlich werden Ihre Daten vertraulich behandelt und nicht an Dritte weitergegeben. Sie können der Verwendung Ihrer Daten jederzeit widersprechen. Das Datenhandling bei Sack Fachmedien erklären wir Ihnen in unserer Datenschutzerklärung.