Synopsis
∗ Incident response and forensic investigation are the processes of detecting attacks and properly extracting evidence to report the crime and conduct audits to prevent future attacks
∗ This much–needed reference covers the methodologies for incident response and computer forensics, Federal Computer Crime law information and evidence requirements, legal issues, and working with law enforcement
∗ Details how to detect, collect, and eradicate breaches in e–mail and malicious code
∗ CD–ROM is packed with useful tools that help capture and protect forensic data; search volumes, drives, and servers for evidence; and rebuild systems quickly after evidence has been obtained
"synopsis" may belong to another edition of this title.
About the Author
DOUGLAS SCHWEITZER is an Internet security specialist and authority on malicious code and computer forensics. He is a Cisco Certified Network Associate and Certified Internet Webmaster Associate, and holds A+, Network+, and i–Net+ certifications. Schweitzer is also the author of Internet Security Made Easy and Securing the Network from Malicious Code.
From the Back Cover
Your in–depth guide to detecting network breaches, uncovering evidence, and preventing future attacks
Whether it s from malicious code sent through an e–mail or an unauthorized user accessing company files, your network is vulnerable to attack. Your response to such incidents is critical. With this comprehensive guide, Douglas Schweitzer arms you with the tools to reveal a security breach, gather evidence to report the crime, and conduct audits to prevent future attacks. He also provides you with a firm understanding of the methodologies for incident response and computer forensics, Federal Computer Crime law information and evidence requirements, legal issues, and how to work with law enforcement.
You ll learn how to:
- Recognize the telltale signs of an incident and take specific response measures
- Search for evidence by preparing operating systems, identifying network devices, and collecting data from memory
- Analyze and detect when malicious code enters the system and quickly locate hidden files
- Perform keyword searches, review browser history, and examine Web caches to retrieve and analyze clues
- Create a forensics toolkit to prop–erly collect and preserve evidence
- Contain an incident by severing network and Internet connections, and then eradicate any vulnerabilities you uncover
- Anticipate future attacks and monitor your system accordingly
- Prevent espionage, insider attacks, and inappropriate use of the network
- Develop policies and procedures to carefully audit the system
CD–ROM includes:
- Helpful tools to capture and protect forensic data; search volumes, drives, and servers for evidence; and rebuild systems quickly after evidence has been obtained
- Valuable checklists developed by the author for all aspects of incident response and handling
"About this title" may belong to another edition of this title.
Search results for Incident Response: Computer Forensics Toolkit
Stock Image
Incident Response: Computer Forensics Toolkit
Seller: HPB-Red, Dallas, TX, U.S.A.
Seller rating 5 out of 5 stars
paperback. Condition: Good. Connecting readers with great books since 1972! Used textbooks may not include companion materials such as access codes, etc. May have some wear or writing/highlighting. We ship orders daily and Customer Service is our top priority! Seller Inventory # S_436767452
Stock Image
Incident Response: Computer Forensics Toolkit
Seller: Red's Corner LLC, Tucker, GA, U.S.A.
Seller rating 5 out of 5 stars
paperback. Condition: Good. All orders ship by next business day! This is a used book. Grade 2 out 5 points. Books has moderate wear on cover and pages. Books with this grade may have any of the following: Personalized notes/names, stickers/labels, markings on pages, bends/creases on cover/spine, ex-library markings. May not include extra materials such as dust jackets, access codes, CDs, accessories, etc. We are a small company and very thankful for your business! Seller Inventory # 4CNO3J0057GV
Stock Image
Incident Response: Computer Forensics Toolkit
Seller: ThriftBooks-Atlanta, AUSTELL, GA, U.S.A.
Seller rating 5 out of 5 stars
Paperback. Condition: Very Good. No Jacket. May have limited writing in cover pages. Pages are unmarked. ~ ThriftBooks: Read More, Spend Less 1.26. Seller Inventory # G0764526367I4N00
Stock Image
Incident Response: Computer Forensics Toolkit
Seller: Foggypaws, Sonoma, CA, U.S.A.
Seller rating 5 out of 5 stars
Paperback. Condition: Very Good. Paperback + CD in very good condition. All inside pages are in great shape. Just a few light surface scratches to the CD that does not affect the play of the disc at all. Minor shelf wear to the cover. Seller Inventory # mon0000051841
Stock Image
Incident Response: Computer Forensics Toolkit
Seller: Robinson Street Books, IOBA, Binghamton, NY, U.S.A.
Seller rating 4 out of 5 stars
Paperback. Condition: Very Good. Prompt Shipment, shipped in Boxes, Tracking PROVIDEDVery Good Copy, cover has some minor creasing, pages clean, CD is included, Sm 4to, 323 pgs. Seller Inventory # ware605hk011
Seller Image
Incident Response: Computer Forensics Toolkit
Seller: WeBuyBooks, Rossendale, LANCS, United Kingdom
Seller rating 5 out of 5 stars
Condition: Good. Most items will be dispatched the same or the next working day. A copy that has been read but remains in clean condition. All of the pages are intact and the cover is intact and the spine may show signs of wear. The book may have minor markings which are not specifically mentioned. Seller Inventory # wbb0023124366
Buy Used
£ 11.71
£ 6.84 shipping
Ships from United Kingdom to U.S.A.
Ships from United Kingdom to U.S.A.
Quantity: 1 available
Stock Image
Incident Response
Seller: Majestic Books, Hounslow, United Kingdom
Seller rating 4 out of 5 stars
Condition: New. pp. xxii + 323 + [xiv] Figures, Illus. Seller Inventory # 7572319
Buy New
£ 24.27
£ 6.50 shipping
Ships from United Kingdom to U.S.A.
Ships from United Kingdom to U.S.A.
Quantity: 4 available
Stock Image
Incident Response
Seller: Books Puddle, New York, NY, U.S.A.
Seller rating 4 out of 5 stars
Condition: New. pp. xxii + 323 + [xiv] Index. Seller Inventory # 26275584
Stock Image
Incident Response Computer Forensics Toolkit
Seller: Romtrade Corp., STERLING HEIGHTS, MI, U.S.A.
Seller rating 5 out of 5 stars
Condition: New. This is a Brand-new US Edition. This Item may be shipped from US or any other country as we have multiple locations worldwide. Seller Inventory # ABNR-35415
Stock Image
Incident Response: Computer Forensics Toolkit
Seller: Basi6 International, Irving, TX, U.S.A.
Seller rating 5 out of 5 stars
Condition: Brand New. New. US edition. Expediting shipping for all USA and Europe orders excluding PO Box. Excellent Customer Service. Seller Inventory # ABEOCT25-115718