Incident Response & Computer Forensics, Third Edition

4.23 avg rating
( 13 ratings by GoodReads )
 
9780071798686: Incident Response & Computer Forensics, Third Edition

The all-new edition of this security bestseller reveals the most relevant and up-to-date incident response techniques, tools, and case scenarios.

Incident Response & Computer Forensics, Third Edition arms you with the right know-how to react quickly and efficiently to the daily onslaught of data breaches that hit all organizations worldwide. This new edition is chock-full of updates about tools and techniques as well as real-world scenarios reflecting today’s most common types of incidents. Specific, detailed advice covers all aspects of incident investigation and handling, with an emphasis on forensics.

Special features highlight important tips for security practitioners: the Law Enforcement feature that appears throughout all chapters provides advice on when and how law enforcement must be informed; the What Can Happen feature shows how badly certain scenarios could turn out (with non-action or wrong-action) and why; the Where to Look feature guides you through the fastest routes to key evidence; and the Eye Witness feature details relevant real-world cases for context and urgency.

Part I: Introduction to Incident Response covers real-world incidents, an introduction to the incident response process, preparation for incident response, and what happens after the detection of an incident. Part II: Data Collection covers live data collection from Windows and UNIX systems, forensic duplication, collecting network-based evidence, and evidence handling. Part III: Data Analysis covers computer system storage fundamentals, data analysis techniques, investigating Windows and UNIX systems, analyzing network traffic, investigating hacker tools, investigating routers, and writing computer forensic reports.

  • The most technically rigorous handbook on incident handling available
  • All-new advice on architecting networks from the ground-up to fight intrusions
  • New details on streamlining intrusion diagnoses for faster recovery
  • New coverage of: log file and massive data analysis; memory analysis; social media portals to entry; malware analysis; and mobile device-originated breaches
  • New real-world scenarios added throughout exemplify the latest, most prevalent incident types
  • New and up-to-date methods for investigating and assessing hackers' latest tools
  • A forensics-forward approach to handling and protecting sensitive data without further compromising systems

"synopsis" may belong to another edition of this title.

Product Description:

The definitive guide to incident response--updated for the first time in a decade!

Thoroughly revised to cover the latest and most effective tools and techniques, Incident Response & Computer Forensics, Third Edition arms you with the information you need to get your organization out of trouble when data breaches occur. This practical resource covers the entire lifecycle of incident response, including preparation, data collection, data analysis, and remediation. Real-world case studies reveal the methods behind--and remediation strategies for--today's most insidious attacks.

  • Architect an infrastructure that allows for methodical investigation and remediation
  • Develop leads, identify indicators of compromise, and determine incident scope
  • Collect and preserve live data
  • Perform forensic duplication
  • Analyze data from networks, enterprise services, and applications
  • Investigate Windows and Mac OS X systems
  • Perform malware triage
  • Write detailed incident response reports
  • Create and implement comprehensive remediation plans

About the Author:

Matt Pepe has served as Technical Director for security consulting firm Mandiant for seven years, following his role as Principal Consultant with Foundstone where he performed forensic analysis in more than 100 Federal investigations for the Air Force Office of Special Investigations (AFOSI), the FBI, and other government agencies.

Jason Luttgens, who has worked in information security for nearly 20 years, is Technical Director for security consulting firm Mandiant, has served in NASA’s OIG Computer Crimes Division as a Technical Director, as a forensics investigator for the Department of Defense, and as a network engineer at the 18th Communications Squadron, based in Okinawa, Japan.

Ryan Kazanciyan, Principal Consultant at Mandiant, has eight years of experience specializing in incident response, forensic analysis, penetration testing, and web application security. He has leveraged his consulting experience to lead training sessions for a variety of audiences in law enforcement, the Federal government, and corporate security groups. Ryan has presented at industry and security conferences, including Black Hat, DoD CyberCrime, ShmooCon, Infragard, and ISACA.

Kevin Mandia is the President of security consulting firm Mandiant, which specializes in incident response, computer forensics, and IT security, and provides services, products, and education to commercial and Federal clients, including Fortune 500 companies, financial institutions, government agencies, domestic and foreign police departments and several of the U.S.'s leading law firms.

"About this title" may belong to another edition of this title.

Top Search Results from the AbeBooks Marketplace

1.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
ISBN 10: 0071798684 ISBN 13: 9780071798686
New Quantity Available: 5
Seller
GreatBookPrices
(Columbia, MD, U.S.A.)
Rating
[?]

Book Description Book Condition: New. Bookseller Inventory # 19102867-n

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 30.93
Convert Currency

Add to Basket

Shipping: US$ 2.64
Within U.S.A.
Destination, Rates & Speeds

2.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
Published by Mcgraw Hill Publishers
ISBN 10: 0071798684 ISBN 13: 9780071798686
New Quantity Available: > 20
Seller
INDOO
(Avenel, NJ, U.S.A.)
Rating
[?]

Book Description Mcgraw Hill Publishers. Book Condition: New. Brand New. Bookseller Inventory # 0071798684

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 34.16
Convert Currency

Add to Basket

Shipping: US$ 3.50
Within U.S.A.
Destination, Rates & Speeds

3.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
Published by McGraw-Hill Education - Europe, United States (2014)
ISBN 10: 0071798684 ISBN 13: 9780071798686
New Paperback Quantity Available: 10
Seller
The Book Depository US
(London, United Kingdom)
Rating
[?]

Book Description McGraw-Hill Education - Europe, United States, 2014. Paperback. Book Condition: New. 3rd Revised edition. 226 x 182 mm. Language: English . Brand New Book. The all-new edition of this security bestseller reveals the most relevant and up-to-date incident response techniques, tools, and case scenarios. Incident Response Computer Forensics, Third Edition arms you with the right know-how to react quickly and efficiently to the daily onslaught of data breaches that hit all organizations worldwide. This new edition is chock-full of updates about tools and techniques as well as real-world scenarios reflecting today s most common types of incidents. Specific, detailed advice covers all aspects of incident investigation and handling, with an emphasis on forensics. Special features highlight important tips for security practitioners: the Law Enforcement feature that appears throughout all chapters provides advice on when and how law enforcement must be informed; the What Can Happen feature shows how badly certain scenarios could turn out (with non-action or wrong-action) and why; the Where to Look feature guides you through the fastest routes to key evidence; and the Eye Witness feature details relevant real-world cases for context and urgency. Part I: Introduction to Incident Response covers real-world incidents, an introduction to the incident response process, preparation for incident response, and what happens after the detection of an incident. Part II: Data Collection covers live data collection from Windows and UNIX systems, forensic duplication, collecting network-based evidence, and evidence handling. Part III: Data Analysis covers computer system storage fundamentals, data analysis techniques, investigating Windows and UNIX systems, analyzing network traffic, investigating hacker tools, investigating routers, and writing computer forensic reports. The most technically rigorous handbook on incident handling available All-new advice on architecting networks from the ground-up to fight intrusions New details on streamlining intrusion diagnoses for faster recovery New coverage of: log file and massive data analysis; memory analysis; social media portals to entry; malware analysis; and mobile device-originated breaches New real-world scenarios added throughout exemplify the latest, most prevalent incident types New and up-to-date methods for investigating and assessing hackers latest tools A forensics-forward approach to handling and protecting sensitive data without further compromising systems. Bookseller Inventory # AA39780071798686

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 39.71
Convert Currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, Rates & Speeds

4.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
Published by McGraw-Hill Education - Europe, United States (2014)
ISBN 10: 0071798684 ISBN 13: 9780071798686
New Paperback Quantity Available: 10
Seller
The Book Depository
(London, United Kingdom)
Rating
[?]

Book Description McGraw-Hill Education - Europe, United States, 2014. Paperback. Book Condition: New. 3rd Revised edition. 226 x 182 mm. Language: English . Brand New Book. The all-new edition of this security bestseller reveals the most relevant and up-to-date incident response techniques, tools, and case scenarios. Incident Response Computer Forensics, Third Edition arms you with the right know-how to react quickly and efficiently to the daily onslaught of data breaches that hit all organizations worldwide. This new edition is chock-full of updates about tools and techniques as well as real-world scenarios reflecting today s most common types of incidents. Specific, detailed advice covers all aspects of incident investigation and handling, with an emphasis on forensics. Special features highlight important tips for security practitioners: the Law Enforcement feature that appears throughout all chapters provides advice on when and how law enforcement must be informed; the What Can Happen feature shows how badly certain scenarios could turn out (with non-action or wrong-action) and why; the Where to Look feature guides you through the fastest routes to key evidence; and the Eye Witness feature details relevant real-world cases for context and urgency. Part I: Introduction to Incident Response covers real-world incidents, an introduction to the incident response process, preparation for incident response, and what happens after the detection of an incident. Part II: Data Collection covers live data collection from Windows and UNIX systems, forensic duplication, collecting network-based evidence, and evidence handling. Part III: Data Analysis covers computer system storage fundamentals, data analysis techniques, investigating Windows and UNIX systems, analyzing network traffic, investigating hacker tools, investigating routers, and writing computer forensic reports. The most technically rigorous handbook on incident handling available All-new advice on architecting networks from the ground-up to fight intrusions New details on streamlining intrusion diagnoses for faster recovery New coverage of: log file and massive data analysis; memory analysis; social media portals to entry; malware analysis; and mobile device-originated breaches New real-world scenarios added throughout exemplify the latest, most prevalent incident types New and up-to-date methods for investigating and assessing hackers latest tools A forensics-forward approach to handling and protecting sensitive data without further compromising systems. Bookseller Inventory # AA39780071798686

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 41.58
Convert Currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, Rates & Speeds

5.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
Published by McGraw-Hill Education
ISBN 10: 0071798684 ISBN 13: 9780071798686
New PAPERBACK Quantity Available: 8
Seller
Movie Mars
(Indian Trail, NC, U.S.A.)
Rating
[?]

Book Description McGraw-Hill Education. PAPERBACK. Book Condition: New. 0071798684 Brand New Book. Ships from the United States. 30 Day Satisfaction Guarantee!. Bookseller Inventory # 16512270

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 40.10
Convert Currency

Add to Basket

Shipping: US$ 3.99
Within U.S.A.
Destination, Rates & Speeds

6.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
ISBN 10: 0071798684 ISBN 13: 9780071798686
New Softcover Quantity Available: 3
Seller
VNHM SHOP
(Pompano Beach, FL, U.S.A.)
Rating
[?]

Book Description Softcover. Book Condition: New. New. This item is new unopened, never used and still in its original manufacturer condition. Tracking number will be provided to you so that you may track your order (for all USA orders). Bookseller Inventory # 9100205

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 44.09
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

7.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
Published by McGraw-Hill Education (2014)
ISBN 10: 0071798684 ISBN 13: 9780071798686
New Quantity Available: > 20
Seller
Books2Anywhere
(Fairford, GLOS, United Kingdom)
Rating
[?]

Book Description McGraw-Hill Education, 2014. PAP. Book Condition: New. New Book. Shipped from UK in 4 to 14 days. Established seller since 2000. Bookseller Inventory # CM-9780071798686

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 34.31
Convert Currency

Add to Basket

Shipping: US$ 11.03
From United Kingdom to U.S.A.
Destination, Rates & Speeds

8.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
ISBN 10: 0071798684 ISBN 13: 9780071798686
New Paperback Quantity Available: 1
Seller
Grand Eagle Retail
(Wilmington, DE, U.S.A.)
Rating
[?]

Book Description 2014. Paperback. Book Condition: New. 3rd. 198mm x 236mm x 31mm. Paperback. The all-new edition of this security bestseller reveals the most relevant and up-to-date incident response techniques, tools, and case scenarios. Incident Response & Computer Forensics, Th.Shipping may be from multiple locations in the US or from the UK, depending on stock availability. 624 pages. 0.950. Bookseller Inventory # 9780071798686

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 48.81
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

9.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
Published by McGraw-Hill Osborne Media (2014)
ISBN 10: 0071798684 ISBN 13: 9780071798686
New Softcover Quantity Available: 1
Seller
Book Deals
(Lewiston, NY, U.S.A.)
Rating
[?]

Book Description McGraw-Hill Osborne Media, 2014. Book Condition: New. Brand New, Unread Copy in Perfect Condition. A+ Customer Service! Summary: The all-new edition of the market's #1 selling incident response book reveals the most relevant and up-to-date incident response techniques, tools, and case scenarios. Bookseller Inventory # ABE_book_new_0071798684

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 55.73
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

10.

Luttgens, Jason; Pepe, Matthew; Mandia, Kevin
Published by McGraw-Hill Osborne Media (2014)
ISBN 10: 0071798684 ISBN 13: 9780071798686
New Paperback Quantity Available: 1
Seller
Irish Booksellers
(Rumford, ME, U.S.A.)
Rating
[?]

Book Description McGraw-Hill Osborne Media, 2014. Paperback. Book Condition: New. book. Bookseller Inventory # 0071798684

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 55.75
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

There are more copies of this book

View all search results for this book