Título: Forensic Discovery
Autor: Dan Farmer
Sinopse: The Definitive Guide to Computer Forensics: Theory and Hands-On Practice Computer forensics--the art and science of gathering and analyzing digital evidence, reconstructing data and attacks, and tracking perpetrators--is becoming ever more important as IT and law enforcement professionals face an epidemic in computer crime. In Forensic Discovery, two internationally recognized experts present a thorough and realistic guide to the subject. Dan Farmer and Wietse Venema cover both theory and hands-on practice, introducing a powerful approach that can often recover evidence considered lost forever. The authors draw on their extensive firsthand experience to cover everything from file systems, to memory and kernel hacks, to malware. They expose a wide variety of computer forensics myths that often stand in the way of success. Readers will find extensive examples from Solaris, FreeBSD, Linux, and Microsoft Windows, as well as practical guidance for writing one's own forensic tools. The authors are singularly well-qualified to write this book: They personally created some of the most popular security tools ever written, from the legendary SATAN network scanner to the powerful Coroner's Toolkit for analyzing UNIX break-ins. After reading this book you will be able to * Understand essential forensics concepts: volatility, layering, and trust * Gather the maximum amount of reliable evidence from a running system * Recover partially destroyed information--and make sense of it * Timeline your system: understand what really happened when * Uncover secret changes to everything from system utilities to kernel modules * Avoid cover-ups and evidence traps set by intruders * Identify the digital footprints associated with suspicious activity * Understand file systems from a forensic analyst's point of view * Analyze malware--without giving it a chance to escape * Capture and examine the contents of main memory on running systems * Walk through the unraveling of an intrusion, one step at a time The book's companion Web site contains complete source and binary code for open source software discussed in the book, plus additional computer forensics case studies and resource links.
Contexto da obra
Quando a classificação é mais ampla, o contexto do livro costuma depender ainda mais de autoria, tema e edição. “Forensic Discovery”, de Dan Farmer, publicado pela editora Addison-Wesley Professional, em 2006 e com 240 páginas, integra a categoria Livros Variados. Por isso, autoria, edição e tema acabam tendo ainda mais peso na forma de apresentar o livro.
Editora: Addison-Wesley Professional
Páginas: 240
Ano: 2006
Edição:
Linguagem: inglês
ISBN: 020163497X
ISBN13: 9780201634976
Sobre a editora
Os livros da editora Addison-Wesley Professional oferecem uma experiência de leitura focada em tecnologia e desenvolvimento de software, com textos que exploram desde fundamentos teóricos até práticas avançadas. As obras costumam apresentar explicações detalhadas, exemplos práticos e estudos de caso, com ênfase em linguagens de programação, arquitetura de sistemas, metodologias ágeis e segurança. O ritmo varia entre abordagens técnicas densas e guias passo a passo, sempre com linguagem clara e orientada para profissionais e estudantes que buscam aprofundamento. O catálogo traz títulos que equilibram conteúdo conceitual e aplicação direta, atendendo tanto a quem prefere material mais narrativo quanto a quem busca referências técnicas rigorosas.
