Bücher online kaufen
|
| Der Artikel wird am Ende des Bestellprozesses zum Download zur Verfügung gestellt. |
Practical Linux Forensics
A Guide for Digital Investigators
Langbeschreibung
A resource to help forensic investigators locate, analyze, and understand digital evidence found on modern Linux systems after a crime, security incident or cyber attack.
Practical Linux Forensics dives into the technical details of analyzing postmortem forensic images of Linux systems which have been misused, abused, or the target of malicious attacks. It helps forensic investigators locate and analyze digital evidence found on Linux desktops, servers, and IoT devices. Throughout the book, you learn how to identify digital artifacts which may be of interest to an investigation, draw logical conclusions, and reconstruct past activity from incidents. You'll learn how Linux works from a digital forensics and investigation perspective, and how to interpret evidence from Linux environments. The techniques shown are intended to be independent of the forensic analysis platforms and tools used.
Learn how to:
Practical Linux Forensics dives into the technical details of analyzing postmortem forensic images of Linux systems which have been misused, abused, or the target of malicious attacks. It helps forensic investigators locate and analyze digital evidence found on Linux desktops, servers, and IoT devices. Throughout the book, you learn how to identify digital artifacts which may be of interest to an investigation, draw logical conclusions, and reconstruct past activity from incidents. You'll learn how Linux works from a digital forensics and investigation perspective, and how to interpret evidence from Linux environments. The techniques shown are intended to be independent of the forensic analysis platforms and tools used.
Learn how to:
Inhaltsverzeichnis
IntroductionChapter 1: Digital Forensics OverviewChapter 2: Linux OverviewChapter 3: Extracting Evidence from Storage Devices and FilesystemsChapter 4: Directory Layout and Forensic Analysis of Linux FilesChapter 5: Investigating Evidence from Linux LogsChapter 6: Reconstructing System Boot and InitializationChapter 7: Examination of Installed Software PackagesChapter 8: Identifying Network Configuration ArtifactsChapter 9: Forensic Analysis of Time and LocationChapter 10: Reconstructing User Desktops and Login ActivityChapter 11: Forensic Traces of Attached Peripheral DevicesAfterwordAppendix A: File and Directory List for Digital Investigators
Bruce Nikkel is a professor at the Bern University of Applied Sciences in Switzerland, specializing in digital forensics and cybercrime. He is co-head of the university's research institute for cybersecurity and engineering, and director of the Masters program in Digital Forensics and Cyber Investigation. In addition to his academic work, he has worked in risk and security departments at a global financial institution since 1997. He headed the bank's Cybercrime Intelligence & Forensic Investigation team for more than 15 years and currently works as an advisor. Bruce holds a PhD in network forensics, is the author of Practical Forensic Imaging (No Starch Press, 2016), and is an editor with Forensic Science International's Digital Investigation journal. He has been a Unix and Linux enthusiast since the 1990s.
ISBN-13:
9781718501973
Veröffentl:
2021
Seiten:
400
Autor:
Bruce Nikkel
eBook Typ:
EPUB
eBook Format:
EPUB
Kopierschutz:
0 - No protection
Sprache:
Englisch
50,99 €*
Lieferzeit: Sofort lieferbar
Alle Preise inkl. MwSt.