Incident response & computer forensics
- نوع فایل : کتاب
- زبان : انگلیسی
- مؤلف : Chris Prosise; Kevin Mandia
- ناشر : New York : McGraw-Hill/Osborne
- چاپ و سال / کشور: 2003
- شابک / ISBN : 9780072230376
Description
Contents: Real-world incidents -- Introduction to the incident response process -- Preparing for incident response -- After detection of an incident -- Live Data Collection from Windows systems -- Live data collection from Unix systems -- Forensic duplication -- Collecting network-based evidence -- Evidence handling -- Computer system storage fundamentals -- Data analysis techniques -- Investigating Windows systems -- Investigating Unix systems -- Analyzing network traffic -- Investigating hacker tools -- Investigating routers -- Writing computer forensic reports -- Appendixes.
Contents: Real-world incidents --
Introduction to the incident response process --
Preparing for incident response --
After detection of an incident --
Live Data Collection from Windows systems --
Live data collection from Unix systems --
Forensic duplication --
Collecting network-based evidence --
Evidence handling --
Computer system storage fundamentals --
Data analysis techniques --
Investigating Windows systems --
Investigating Unix systems --
Analyzing network traffic --
Investigating hacker tools --
Investigating routers --
Writing computer forensic reports --
Appendixes.
Introduction to the incident response process --
Preparing for incident response --
After detection of an incident --
Live Data Collection from Windows systems --
Live data collection from Unix systems --
Forensic duplication --
Collecting network-based evidence --
Evidence handling --
Computer system storage fundamentals --
Data analysis techniques --
Investigating Windows systems --
Investigating Unix systems --
Analyzing network traffic --
Investigating hacker tools --
Investigating routers --
Writing computer forensic reports --
Appendixes.