Op werkdagen voor 23:00 besteld, morgen in huis Gratis verzending vanaf €20
010-4091959
Executing Windows Command Line Investigations
Chet Hosmer

Chet Hosmer is the Founder of Python Forensics, Inc. a non-profit organization focused on the collaborative development of open-source investigative technologies using the Python programming language.

Meer over de auteurs
, ,

Executing Windows Command Line Investigations

While Ensuring Evidentiary Integrity
Specificaties
Paperback, 228 blz. | Engels
Elsevier Science | 1e druk, 2016
ISBN13: 9780128092682
Rubricering
Juridisch :
Elsevier Science 1e druk, 2016 9780128092682
Verwachte levertijd ongeveer 9 werkdagen
62,14
In winkelwagen
 

Samenvatting

Key Features
- Includes a free download of the Proactive Incident Response Command Shell (PIRCS) software
- Learn about the technical details of Windows CLI so you can directly manage every aspect of incident response evidence acquisition and triage, while maintaining evidentiary integrity

The book Executing Windows Command Line Investigations targets the needs of cyber security practitioners who focus on digital forensics and incident response. These are the individuals who are ultimately responsible for executing critical tasks such as incident response; forensic analysis and triage; damage assessments; espionage or other criminal investigations; malware analysis; and responding to human resource violations.

The authors lead readers through the importance of Windows CLI, as well as optimal configuration and usage. Readers will then learn the importance of maintaining evidentiary integrity, evidence volatility, and gain appropriate insight into methodologies that limit the potential of inadvertently destroying or otherwise altering evidence. Next, readers will be given an overview on how to use the proprietary software that accompanies the book as a download from the companion website. This software, called Proactive Incident Response Command Shell (PIRCS), developed by Harris Corporation provides an interface similar to that of a Windows CLI that automates evidentiary chain of custody and reduces human error and documentation gaps during incident response.

Specificaties

ISBN13:9780128092682
Trefwoorden:beveiliging, cybercrime, Microsoft, systeembeheer, Windows, Besturingssystemen
Taal:Engels
Bindwijze:paperback
Aantal pagina's:228
Uitgever:Elsevier Science
Druk:1
Verschijningsdatum:1-1-2016
Hoofdrubriek:IT-management / ICT

Over Chet Hosmer

Chet Hosmer is the Founder of Python Forensics, Inc. a non-profit organization focused on the collaborative development of open-source investigative technologies using the Python programming language. Chet serves as a visiting professor at Utica College in the Cybersecurity Graduate program where his research and teaching focus on advanced steganography/data hiding methods and related defenses. He is also an Adjunct Faculty member at Champlain College in the Masters of Science in Digital Forensic Science Program where he is researching and working with graduate students to advance the application Python to solve hard problems facing digital investigators.

Andere boeken door Chet Hosmer

Over Joshua Bartolomie

Joshua Bartolomie (CISSP, CRISC, DFCP, CEECS, CFCE) has 20 years of technical and management experience within the information technology and cyber security domains. Joshua has contributed to and managed programs that range from teaching digital forensics to designing, implementing, and managing cutting edge Security Operations Centers and Incident Response Teams. Mr. Bartolomie is an active participant in multiple information sharing and collaborative consortiums and has presented at numerous cyber security forums, conferences, and venues. In his current role, Joshua is responsible for translating corporate business strategies, environmental conditions, infrastructure requirements, and industry best practices into strategic cyber security designs and architectural roadmaps. Joshua holds a Master’s Degree in Information Assurance from Norwich University and a Bachelor’s of Science in Digital and Computer Forensics from Champlain College.

Andere boeken door Joshua Bartolomie

Over Rosanne Pelli

Ms. Rosanne Pelli, is a certified Project Management Professional (PMP) through the Project Management Institute (PMI) and CompTIA Security+ professional with Harris Corporation. She has over ten years of experience in the coordination, programmatic oversight and management of US government contracts as well as Harris’ Secure-U Training Program. During her years of experience, Ms. Pelli has assisted in the management and coordination of various government contracts that focused on the identification and analysis of emerging cyber threats; evaluation and transition of cyber security technologies for tactical use by the cyber security community; technical assistance to federal, state and local law enforcement communities; development and maintenance of a virtual cyber security training portal; and the development, coordination and execution of various national and international cyber security training initiatives.

Andere boeken door Rosanne Pelli

Inhoudsopgave

Dedication
Biography
Foreword
Preface
Acknowledgments
Harris Corporation

1. The Impact of Windows Command Line Investigations
-Abstract
-Introduction
-Organization of the Book
-Chapter 1 Review
-Chapter 1 Summary Questions

2. Importance of Digital Evidence Integrity
-Abstract
-Introduction
-Chapter 2 Review
-Chapter 2 Summary Questions

3. Windows Command Line Interface
-Abstract
-Introduction
-Chapter 3 Review
-Chapter 3 Summary Questions

4. Operating the Proactive Incident Response Command Shell
-Abstract
-Introduction
-Chapter 4 Review
-Chapter 4 Summary Questions

5. Use Cases
-Abstract
-Introduction
-General Evidence Collection Guidelines
-Fundamental Digital Evidence Categories
-Use Case Examples
-Summary
-Chapter 5 Review
-Chapter 5 Summary Questions

6. Future Considerations
-Abstract
-Introduction

Appendix A: Third-party Windows CLI Tools
-Abstract
-Keywords
-Introduction

Appendix B: Windows CLI Reference Synopsis
-Abstract
-Keywords
-Introduction
-Microsoft TechNet
-Popular Commands for an Examination

Index

Anderen die dit boek kochten, kochten ook

Net verschenen

Rubrieken

Uw cookie-instellingen
Deze website maakt gebruik van verschillende soorten cookies. Sommige cookies worden geplaatst door diensten van derden die op onze pagina's worden weergegeven. Om deze externe content te kunnen tonen is nodig dat u toestemming geeft voor het zetten van persoonlijke en marketingcookies. U kunt uw toestemming op elk moment wijzigen of intrekken. In onze cookieverklaring vindt u meer informatie.

Populaire producten

    Personen

      Trefwoorden

        Executing Windows Command Line Investigations

        Recensiebeleid
        Noordhoff terugkoopgarantie

        Noordhoff koopt jouw boek terug, zonder zorgen!

        Heb je jouw boeken niet meer nodig?

        Als je jouw studieboeken gekocht hebt bij hanzestudybook.nl, kun je geselecteerde titels moeiteloos terugverkopen aan Noordhoff. Geen vragen, geen gedoe en lekker duurzaam.

        Volledige informatie op Noordhoff.nl

        AI-book

        Wat is een AI-book?

        Een AI-book is niet een boek dat geschreven is door AI maar een boek dat verrijkt is met AI. Het maakt de inhoud van een boek interactief via WhatsApp, zodat je ermee kunt chatten. Zie het als een razend slimme assistent die het boek perfect begrijpt en er alles uit onthouden heeft. Jij kunt deze assistent alles vragen. Vraag bijvoorbeeld hoe je iets kunt toepassen op jouw persoonlijke situatie, om een korte samenvatting, of wat de belangrijkste inzichten zijn. AI-books zijn alleen te gebruiken via WhatsApp, je hoeft er geen aparte app voor te installeren.
        Meer informatie over AI-books

        ?

        Geef uw beoordeling

        Executing Windows Command Line Investigations

        Verwijder uw beoordeling