Items related to Mastering Python Forensics
Synopsis
Master the art of digital forensics and analysis with Python
About This Book
- Learn to perform forensic analysis and investigations with the help of Python, and gain an advanced understanding of the various Python libraries and frameworks
- Analyze Python scripts to extract metadata and investigate forensic artifacts
- The writers, Dr. Michael Spreitzenbarth and Dr. Johann Uhrmann, have used their experience to craft this hands-on guide to using Python for forensic analysis and investigations
Who This Book Is For
If you are a network security professional or forensics analyst who wants to gain a deeper understanding of performing forensic analysis with Python, then this book is for you. Some Python experience would be helpful.
What You Will Learn
- Explore the forensic analysis of different platforms such as Windows, Android, and vSphere
- Semi-automatically reconstruct major parts of the system activity and time-line
- Leverage Python ctypes for protocol decoding
- Examine artifacts from mobile, Skype, and browsers
- Discover how to utilize Python to improve the focus of your analysis
- Investigate in volatile memory with the help of volatility on the Android and Linux platforms
In Detail
Digital forensic analysis is the process of examining and extracting data digitally and examining it. Python has the combination of power, expressiveness, and ease of use that makes it an essential complementary tool to the traditional, off-the-shelf digital forensic tools.
This book will teach you how to perform forensic analysis and investigations by exploring the capabilities of various Python libraries.
The book starts by explaining the building blocks of the Python programming language, especially ctypes in-depth, along with how to automate typical tasks in file system analysis, common correlation tasks to discover anomalies, as well as templates for investigations. Next, we'll show you cryptographic algorithms that can be used during forensic investigations to check for known files or to compare suspicious files with online services such as VirusTotal or Mobile-Sandbox.
Moving on, you'll learn how to sniff on the network, generate and analyze network flows, and perform log correlation with the help of Python scripts and tools. You'll get to know about the concepts of virtualization and how virtualization influences IT forensics, and you'll discover how to perform forensic analysis of a jailbroken/rooted mobile device that is based on iOS or Android.
Finally, the book teaches you how to analyze volatile memory and search for known malware samples based on YARA rules.
Style and approach
This easy-to-follow guide will demonstrate forensic analysis techniques by showing you how to solve real-word-scenarios step by step.
"synopsis" may belong to another edition of this title.
About the Author
Dr. Michael Spreitzenbarth
Dr. Michael Spreitzenbarth holds a degree of doctor of engineering in IT security from the University of Erlangen-Nuremberg and is a CISSP as well as a GMOB. He has been an IT security consultant at a worldwide operating CERT for more than three years and has worked as a freelancer in the field of mobile phone forensics, malware analysis, and IT security consultancy for more than six years. Since the last four years, he has been giving talks and lectures in the fields of forensics and mobile security at various universities and in the private sector.
"About this title" may belong to another edition of this title.
- PublisherPackt Pub Ltd
- Publication date2015
- ISBN 10 1783988045
- ISBN 13 9781783988044
- BindingPaperback
- LanguageEnglish
- Number of pages169
Search results for Mastering Python Forensics
Seller Image
Mastering Python Forensics
Published by
Packt Publishing - ebooks Account, 2015
ISBN 10: 1783988045
ISBN 13: 9781783988044
Used
Softcover
Seller: WeBuyBooks, Rossendale, LANCS, United Kingdom
Seller rating 5 out of 5 stars
Condition: Very Good. Most items will be dispatched the same or the next working day. A copy that has been read, but is in excellent condition. Pages are intact and not marred by notes or highlighting. The spine remains undamaged. Seller Inventory # wbs1542909309
Quantity: 1 available
Stock Image
Mastering Python Forensics
Seller: Lucky's Textbooks, Dallas, TX, U.S.A.
Seller rating 5 out of 5 stars
Condition: New. Seller Inventory # ABLIING23Mar2912160165638
Quantity: Over 20 available
Stock Image
Mastering Python Forensics
Seller: California Books, Miami, FL, U.S.A.
Seller rating 5 out of 5 stars
Condition: New. Seller Inventory # I-9781783988044
Quantity: Over 20 available
Stock Image
Mastering Python Forensics
Print on DemandSeller: PBShop.store US, Wood Dale, IL, U.S.A.
Seller rating 5 out of 5 stars
PAP. Condition: New. New Book. Shipped from UK. THIS BOOK IS PRINTED ON DEMAND. Established seller since 2000. Seller Inventory # L0-9781783988044
Quantity: Over 20 available
Stock Image
Mastering Python Forensics Master the art of digital forensics and analysis with Python
Print on DemandSeller: PBShop.store UK, Fairford, GLOS, United Kingdom
Seller rating 4 out of 5 stars
PAP. Condition: New. New Book. Delivered from our UK warehouse in 4 to 14 business days. THIS BOOK IS PRINTED ON DEMAND. Established seller since 2000. Seller Inventory # L0-9781783988044
Quantity: Over 20 available
Stock Image
Mastering Python Forensics
Seller: Chiron Media, Wallingford, United Kingdom
Seller rating 5 out of 5 stars
PF. Condition: New. Seller Inventory # 6666-IUK-9781783988044
Quantity: 10 available
Stock Image
Mastering Python Forensics
Seller: Ria Christie Collections, Uxbridge, United Kingdom
Seller rating 5 out of 5 stars
Condition: New. In. Seller Inventory # ria9781783988044_new
Quantity: Over 20 available
Stock Image
Mastering Python Forensics
Published by
Packt Publishing Limited, 2015
ISBN 10: 1783988045
ISBN 13: 9781783988044
New
Paperback / softback
Seller: THE SAINT BOOKSTORE, Southport, United Kingdom
Seller rating 5 out of 5 stars
Paperback / softback. Condition: New. This item is printed on demand. New copy - Usually dispatched within 5-9 working days 526. Seller Inventory # C9781783988044
Quantity: Over 20 available
Seller Image
Mastering Python Forensics
Print on DemandSeller: AHA-BUCH GmbH, Einbeck, Germany
Seller rating 5 out of 5 stars
Taschenbuch. Condition: Neu. nach der Bestellung gedruckt Neuware - Printed after ordering. Seller Inventory # 9781783988044
Quantity: 1 available
Seller Image
Spreitzenbarth, M: Mastering Python Forensics
Seller: moluna, Greven, Germany
Seller rating 5 out of 5 stars
Condition: New. Seller Inventory # 464170353
Quantity: Over 20 available