Learn Computer Forensics: A beginner's guide to searching, analyzing, and securing digital evidence 1st Edition

Hot
519HbPUtKzL._SX403_BO1,204,203,200_

Key Features

  • Learn the core techniques of computer forensics to acquire and secure digital evidence skillfully
  • Conduct a digital forensic examination and document the digital evidence collected
  • Analyze security systems and overcome complex challenges with a variety of forensic investigations

Book Description

A computer forensics investigator must possess a variety of skills, including the ability to answer legal questions, gather and document evidence, and prepare for an investigation. This book will help you get up and running with using digital forensic tools and techniques to investigate cybercrimes successfully.

Starting with an overview of forensics and all the open source and commercial tools needed to get the job done, you'll learn core forensic practices for searching databases and analyzing data over networks, personal devices, and web applications. You'll then learn how to acquire valuable information from different places, such as filesystems, e-mails, browser histories, and search queries, and capture data remotely. As you advance, this book will guide you through implementing forensic techniques on multiple platforms, such as Windows, Linux, and macOS, to demonstrate how to recover valuable information as evidence. Finally, you'll get to grips with presenting your findings efficiently in judicial or administrative proceedings.

By the end of this book, you'll have developed a clear understanding of how to acquire, analyze, and present digital evidence like a proficient computer forensics investigator.

What you will learn

  • Understand investigative processes, the rules of evidence, and ethical guidelines
  • Recognize and document different types of computer hardware
  • Understand the boot process covering BIOS, UEFI, and the boot sequence
  • Validate forensic hardware and software
  • Discover the locations of common Windows artifacts
  • Document your findings using technically correct terminology

Who this book is for

If you're an IT beginner, student, or an investigator in the public or private sector this book is for you.This book will also help professionals and investigators who are new to incident response and digital forensics and interested in making a career in the cybersecurity domain.

Table of Contents

  1. Types of Computer-Based Investigations
  2. The Forensic Analysis Process
  3. Acquisition of Evidence
  4. Computer Systems
  5. Computer Investigation Process
  6. Windows Artifact Analysis
  7. RAM Memory Forensic Analysis
  8. Email Forensics – Investigation Techniques
  9. Internet Artifacts
  10. Report Writing
  11. Expert Witness Ethics

About the Author

William Oettinger is a veteran technical trainer and investigator. He is a retired police officer with the Las Vegas Metropolitan Police Department and a retired CID agent with the United States Marine Corps. He is a professional with over 20 years' experience in academic, local, military, federal, and international law enforcement organizations, where he acquired his multifaceted experience in IT, digital forensics, security operations, law enforcement, criminal investigations, policy, and procedure development. He has earned an MSc from Tiffin University, Ohio. He works for Bilecki and Tipon LLLC and the University of Maryland Global Campus (UMGC). When not working, he likes to spend time with his wife and his two miniature schnauzers.

--This text refers to the paperback edition.

Product details

  • ASIN ‏ : ‎ B086WBP289
  • Publisher ‏ : ‎ Packt Publishing; 1st edition (April 30, 2020)
  • Publication date ‏ : ‎ April 30, 2020
  • Language ‏ : ‎ English
  • File size ‏ : ‎ 31518 KB
  • Text-to-Speech ‏ : ‎ Enabled
  • Screen Reader ‏ : ‎ Supported
  • Enhanced typesetting ‏ : ‎ Enabled
  • X-Ray ‏ : ‎ Not Enabled
  • Word Wise ‏ : ‎ Not Enabled
  • Print length ‏ : ‎ 370 pages
  • Page numbers source ISBN ‏ : ‎ 1838648178
  • Lending ‏ : ‎ Not Enabled