Items related to Computer Forensics: Incident Response Essentials
Synopsis
Every computer crime leaves tracks—you just have to know where to find them. This book shows you how to collect and analyze the digital evidence left behind in a digital crime scene.
Computers have always been susceptible to unwanted intrusions, but as the sophistication of computer technology increases so does the need to anticipate, and safeguard against, a corresponding rise in computer-related criminal activity.
Computer forensics, the newest branch of computer security, focuses on the aftermath of a computer security incident. The goal of computer forensics is to conduct a structured investigation to determine exactly what happened, who was responsible, and to perform the investigation in such a way that the results are useful in a criminal proceeding.
Written by two experts in digital investigation, Computer Forensics provides extensive information on how to handle the computer as evidence. Kruse and Heiser walk the reader through the complete forensics process—from the initial collection of evidence through the final report. Topics include an overview of the forensic relevance of encryption, the examination of digital evidence for clues, and the most effective way to present your evidence and conclusions in court. Unique forensic issues associated with both the Unix and the Windows NT/2000 operating systems are thoroughly covered.
This book provides a detailed methodology for collecting, preserving, and effectively using evidence by addressing the three A's of computer forensics:
- Acquire the evidence without altering or damaging the original data.
- Authenticate that your recorded evidence is the same as the original seized data.
- Analyze the data without modifying the recovered data.
Computer Forensics is written for everyone who is responsible for investigating digital criminal incidents or who may be interested in the techniques that such investigators use. It is equally helpful to those investigating hacked web servers, and those who are investigating the source of illegal pornography.
0201707195B09052001
"synopsis" may belong to another edition of this title.
Review
Computer security is a crucial aspect of modern information management, and one of the latest buzzwords is incident response--detecting and reacting to security breaches. Computer Forensics offers information professionals a disciplined approach to implementing a comprehensive incident-response plan, with a focus on being able to detect intruders, discover what damage they did, and hopefully find out who they are.
There is little doubt that the authors are serious about cyberinvestigation. They advise companies to "treat every case like it will end up in court," and although this sounds extreme, it is good advice. Upon detecting a malicious attack on a system, many system administrators react instinctively. This often involves fixing the problem with minimal downtime, then providing the necessary incremental security to protect against an identical attack. The authors warn that this approach often contaminates evidence and makes it difficult to track the perpetrator. This book describes how to maximize system uptime while protecting the integrity of the "crime scene."
The bulk of Computer Forensics details the technical skills required to become an effective electronic sleuth, with an emphasis on providing a well-documented basis for a criminal investigation. The key to success is becoming a "white hat" hacker in order to combat the criminal "black hat" hackers. The message is clear: if you're not smart enough to break into someone else's system, you're probably not smart enough to catch someone breaking into your system. In this vein, the authors use a number of technical examples and encourage the readers to develop expertise in Unix/Linux and Windows NT fundamentals. They also provide an overview of a number of third-party tools, many of which can be used for both tracking hackers and to probe your own systems.
The authors explain their investigative techniques via a number of real-world anecdotes. It is striking that many of the same hacks detailed in Cliff Stoll's classic The Cuckoo's Egg are still in use over 10 years later--both on the criminal and investigative fronts. It is up to individual companies whether or not to pursue each attempted security violation as a potential criminal case, but Computer Forensics provides a strong argument to consider doing so. --Pete Ostenson
Topics covered: Overview of computer crime investigative response, including extensive descriptions of hacking techniques. Frequent examples are used to demonstrate how to extract evidence from a violated computer system. Appendices include sample incident-response forms.
About the Author
0201707195AB05232001
"About this title" may belong to another edition of this title.
- PublisherAddison-Wesley Professional
- Publication date2001
- ISBN 10 0201707195
- ISBN 13 9780201707199
- BindingPaperback
- LanguageEnglish
- Edition number1
- Number of pages416
- Rating
Search results for Computer Forensics: Incident Response Essentials
Stock Image
Computer Forensics: Incident Response Essentials
Published by
Addison-Wesley Professional, 2001
ISBN 10: 0201707195
ISBN 13: 9780201707199
Used
paperback
Seller: Orion Tech, Kingwood, TX, U.S.A.
Seller rating 5 out of 5 stars
paperback. Condition: Good. Seller Inventory # 0201707195-3-33039633
Quantity: 1 available
Stock Image
Computer Forensics: Incident Response Essentials
Published by
Addison-Wesley Professional, 2001
ISBN 10: 0201707195
ISBN 13: 9780201707199
Used
Softcover
Seller: SecondSale, Montgomery, IL, U.S.A.
Seller rating 5 out of 5 stars
Condition: Very Good. Item in very good condition! Textbooks may not include supplemental items i.e. CDs, access codes etc. Seller Inventory # 00084929709
Quantity: 1 available
Stock Image
Computer Forensics: Incident Response Essentials
Published by
Addison-Wesley Professional, 2001
ISBN 10: 0201707195
ISBN 13: 9780201707199
Used
Softcover
Seller: KuleliBooks, Phoenix, AZ, U.S.A.
Seller rating 5 out of 5 stars
Condition: Acceptable. The item is fairly worn but still readable. The book may have some cosmetic wear (i.e. creased spine/cover, scratches, curled corners, folded pages, sunburn, stains, water damage, bent, torn, damaged binding, dent). - The dust jacket if present, may be marked, and have considerable heavy wear. - The book might be ex-library copy, and may have the markings and stickers associated from the library - The book may have considerable highlights/notes/underlined pages but the text is legible - Accessories such as CD, codes, toys, may not be included - Safe and Secure Mailer - No Hassle Return. Seller Inventory # 521X7W001GBG
Quantity: 1 available
Stock Image
Computer Forensics: Incident Response Essentials
Published by
Addison-Wesley Professional, 2001
ISBN 10: 0201707195
ISBN 13: 9780201707199
Used
Softcover
Seller: Wonder Book, Frederick, MD, U.S.A.
Seller rating 5 out of 5 stars
Condition: As New. Like New condition. A near perfect copy that may have very minor cosmetic defects. Seller Inventory # A10A-02555
Quantity: 1 available
Stock Image
Computer Forensics : Incident Response Essentials
Published by
Pearson Education, Limited, 2001
ISBN 10: 0201707195
ISBN 13: 9780201707199
Used
Softcover
First Edition
Seller: Better World Books, Mishawaka, IN, U.S.A.
Seller rating 5 out of 5 stars
Condition: Good. 1st. Used book that is in clean, average condition without any missing pages. Seller Inventory # GRP102493040
Quantity: 2 available
Stock Image
Computer Forensics : Incident Response Essentials
Published by
Pearson Education, Limited, 2001
ISBN 10: 0201707195
ISBN 13: 9780201707199
Used
Softcover
First Edition
Seller: Better World Books: West, Reno, NV, U.S.A.
Seller rating 5 out of 5 stars
Condition: Very Good. 1st. Used book that is in excellent condition. May show signs of wear or have minor defects. Seller Inventory # 5053012-6
Quantity: 1 available
Stock Image
Computer Forensics: Incident Response Essentials
Published by
Addison-Wesley Professional, 2001
ISBN 10: 0201707195
ISBN 13: 9780201707199
Used
Paperback
Seller: ThriftBooks-Phoenix, Phoenix, AZ, U.S.A.
Seller rating 5 out of 5 stars
Paperback. Condition: Very Good. No Jacket. May have limited writing in cover pages. Pages are unmarked. ~ ThriftBooks: Read More, Spend Less 1.45. Seller Inventory # G0201707195I4N00
Quantity: 1 available
Stock Image
Computer Forensics: Incident Response Essentials
Published by
Addison-Wesley Professional, 2001
ISBN 10: 0201707195
ISBN 13: 9780201707199
Used
Paperback
Seller: ThriftBooks-Dallas, Dallas, TX, U.S.A.
Seller rating 5 out of 5 stars
Paperback. Condition: Very Good. No Jacket. May have limited writing in cover pages. Pages are unmarked. ~ ThriftBooks: Read More, Spend Less 1.45. Seller Inventory # G0201707195I4N00
Quantity: 1 available
Stock Image
Computer Forensics: Incident Response Essentials
Published by
Pearson Education (US), United States, Boston, 2001
ISBN 10: 0201707195
ISBN 13: 9780201707199
Used
Paperback
Seller: WorldofBooks, Goring-By-Sea, WS, United Kingdom
Seller rating 4 out of 5 stars
Paperback. Condition: Very Good. Every computer crime leaves tracksyou just have to know where to find them. This book shows you how to collect and analyze the digital evidence left behind in a digital crime scene. Computers have always been susceptible to unwanted intrusions, but as the sophistication of computer technology increases so does the need to anticipate, and safeguard against, a corresponding rise in computer-related criminal activity. Computer forensics, the newest branch of computer security, focuses on the aftermath of a computer security incident. The goal of computer forensics is to conduct a structured investigation to determine exactly what happened, who was responsible, and to perform the investigation in such a way that the results are useful in a criminal proceeding. Written by two experts in digital investigation, Computer Forensics provides extensive information on how to handle the computer as evidence. Kruse and Heiser walk the reader through the complete forensics processfrom the initial collection of evidence through the final report. Topics include an overview of the forensic relevance of encryption, the examination of digital evidence for clues, and the most effective way to present your evidence and conclusions in court. Unique forensic issues associated with both the Unix and the Windows NT/2000 operating systems are thoroughly covered. This book provides a detailed methodology for collecting, preserving, and effectively using evidence by addressing the three A's of computer forensics: Acquire the evidence without altering or damaging the original data. Authenticate that your recorded evidence is the same as the original seized data. Analyze the data without modifying the recovered data. Computer Forensics is written for everyone who is responsible for investigating digital criminal incidents or who may be interested in the techniques that such investigators use. It is equally helpful to those investigating hacked web servers, and those who are investigating the source of illegal pornography. 0201707195B09052001. The book has been read, but is in excellent condition. Pages are intact and not marred by notes or highlighting. The spine remains undamaged. Seller Inventory # GOR002377880
Quantity: 2 available
Stock Image
Computer Forensics: Incident Response Essentials
Seller: AwesomeBooks, Wallingford, United Kingdom
Seller rating 5 out of 5 stars
Paperback. Condition: Very Good. Computer Forensics: Incident Response Essentials This book is in very good condition and will be shipped within 24 hours of ordering. The cover may have some limited signs of wear but the pages are clean, intact and the spine remains undamaged. This book has clearly been well maintained and looked after thus far. Money back guarantee if you are not satisfied. See all our books here, order more than 1 book and get discounted shipping. Seller Inventory # 7719-9780201707199
Quantity: 3 available