| Welcome to vBulletin FAQ |
vBulletin FAQ Navigation
Getting Started
Customizing your vBulletin
Search Engines & SEO
Making Money with a Forum
Promoting your Community
|
| Get your own vBulletin Today |
|
| Webmaster Help |
|
|
|
Mastering Windows Network Forensics and Investigation (Mastering)
vBulletin Book Store > vBulletin books beginning with M
|
Mastering Windows Network Forensics and Investigation (Mastering) |
Author: Steven Anson
Published: 2007-04-02 |
List price: $59.99
Our price: $37.79
|
Usually ships in 24 hours
As of: October 14th, 2008 03:59:52 AM
|
|
|
Customer comments on this selection.
 Good but could be better...
The book is about the daunting task to get evidence from computers suited with the Windows Operating System. This book is split in three parts. The first part is to get a basic understanding of how things work and what kind of vulnerabilities there are on a typical windows machine. Rootkits are touched lightly although there is some information to get a basic understanding of this complex and threatening technology there could be expected more.
The second part is about analysing a Windows Computer. Tools and techniques are discussed here and some explanation about the various filesystems. There could be less focus on the "EnCase" suite in my opinion.
The last, and in my opinion best part, is about about analysing logs, logparser and how to make your job much easier in gathering information and evidence from a windows machine. A great part with a wealth of useful tips and tricks. Even if you're not directly involved with forensics.
So the authors of this book discussed the basics of foresic investigation and security techniques and also the reasoning behind them. Overall they did a good job. They are not afraid to point out some other interesting booktitles to get even more knowledge about a specific topic. However there could be less focus on "EnCase" and more detailed information about certain topics such as rootkits.
Rob Faber CISSP, CEH, MCSE
Infrastructure architect / Sr. Security consultant
The Netherlands
 Windows Netowork Forensic
This book is well worth the price. Much information regarding network configuration and network logs examination, which is highly needed in performing investigations in todays complicated syndicate
Must have for your library!
Very good resource for network forensics. Easy to read and full of good nuggets of information. Worth the price of admission!
A must have for network security administrators and computer/network crime investigators.
This book skillfully combines real world network security with law enforcement investigative techniques to deliver a text which will enable you to make the right decisions based on the unique circumstances and facts of each event you are called on to investigate.
I consider this book a must have for anyone in network administration, network security or on a computer emergency response team. The techniques and information contained within are, without a doubt, missing from almost all other books and training you have received.
It's refreshing to finally be part of the "target audience"
As a law enforcement officer, I've often found myself frustrated by books that cover incident response, but never discuss law enforcement involvement, except as an afterthought. While I understand that it's important for corporate and internal investigators to have this type of information, it's refreshing to find a book that talks about the law enforcement response to an computer crime incident.
I've had the privilege of attending classes instructed by both of these authors. One of the things that impressed me about their classes is that they were able to break down complicated technical concepts into terms that cops can understand. They continue to do that in this book.
Computer crime investigators need to add this book to their libraries. I'd say it's a must have.
|
|
Our vBulletin book picks:
|
|
Find more vBulletin related products of interest.
|
