Description |
xxix, 507 pages : illustrations ; 22 cm |
Contents |
Real-world incidents -- Introduction to the incident response process -- Preparing for incident response -- After detection of an incident -- Live data collection from Windows systems -- Live data collection of Unix systems -- Forensic duplication -- Collecting network-based evidence -- Evidence handling -- Computer system storage fundamentals -- Data analysis techniques -- Investigating Windows systems -- Investigating Unix systems -- Analyzing network traffic -- Investigating hacker tools -- Investigating routers -- Writing computer forensic reports |
Summary |
"An insider's look at the legal procedural and technical steps of computer forensics and analysis. Contains all-new forensics content and real-world scenarios." -- Cover |
Notes |
Previous ed.: 2001 |
Bibliography |
Includes bibliographical references and index |
Subject |
Computer crimes.
|
|
Computer crimes -- Investigation.
|
|
Computer security.
|
Author |
Mandia, Kevin.
|
LC no. |
2004299174 |
ISBN |
007222696X paperback |
|