Executing Windows Command Line Investigations: While Ensuring Evidentiary Integrity

Chet Hosmer, Joshua Bartolomie, Rosanne Pelli

Anno: 2016
Rilegatura: Paperback / softback
Pagine: 228 p.
Testo in English
Dimensioni: 235 x 191 mm
Peso: 500 gr.
  • EAN: 9780128092682
pagabile con 18App pagabile con Carta del Docente

Articolo acquistabile con 18App e Carta del Docente

€ 47,37

€ 50,39

Risparmi € 3,02 (6%)

Venduto e spedito da IBS

47 punti Premium

Disponibile in 10 gg

Quantità:
Descrizione
The book Executing Windows Command Line Investigations targets the needs of cyber security practitioners who focus on digital forensics and incident response. These are the individuals who are ultimately responsible for executing critical tasks such as incident response; forensic analysis and triage; damage assessments; espionage or other criminal investigations; malware analysis; and responding to human resource violations. The authors lead readers through the importance of Windows CLI, as well as optimal configuration and usage. Readers will then learn the importance of maintaining evidentiary integrity, evidence volatility, and gain appropriate insight into methodologies that limit the potential of inadvertently destroying or otherwise altering evidence. Next, readers will be given an overview on how to use the proprietary software that accompanies the book as a download from the companion website. This software, called Proactive Incident Response Command Shell (PIRCS), developed by Harris Corporation provides an interface similar to that of a Windows CLI that automates evidentiary chain of custody and reduces human error and documentation gaps during incident response.