+612 9045 4394
Malware Forensic Field Guide for UNIX Systems : Digital Forensics Field Guides - Cameron Malin

Malware Forensic Field Guide for UNIX Systems

Digital Forensics Field Guides


Published: 6th January 2014
Ships: 7 to 10 business days
7 to 10 business days
RRP $78.05

eBook View Product

Published: 7th December 2013
Format: ePUB

Malware Forensics Field Guide for Linux Systems is an on-site companion for computer forensic investigators, incident responders, and malware analysts that distills the formalized methods introduced in the authors' previous work. It also present the new forensic concepts of digital impression and trace evidence, along the advanced profiling techniques based in malware taxonomy and phylogeny.

Presented in succinct outline format with cross-references to supplemental components and appendices, this tactical and practical resource is designed to proved the digital investigator clear and concise guidance in an easily accessible format while responding to an incident or conducting analysis in a lab.

Presents tools and on-the-job tasks in an easy-to-use reference guide

Discusses how to collect and examine volatile data from Linux systems

Provides specific techniques for profiling suspect files

Addresses the legal concerns often encountered on-site

Includes templates and quick references for use in the field

Dedicated Web site (www.malwarefieldguide.com) keeps readers up-to-date with the latest tools and resources

""Malin et al. demonstrate how to preserve volatile data on a Windows system during a malware incident and how to analyze physical and process memory dumps for malware artifacts. The practical handbook also provides formalized methodologies for conducting forensic examinations of Windows systems, profiling a suspect file, and identifying the nature and purpose of a suspect program."--Reference and Research Book News, February 2013""

Malware Incident Response: Volatile Data Collection and Examination on a Live Linux System
Analyzing Physical and Process Memory Dumps for Malware Artifacts
Post-Mortem Forensics: Discovering and Extracting Malware and Associated Artifacts from Linux Systems
Legal Considerations
File Identification and Profiling Initial Analysis of a Suspect File on a Linux System
Analysis of a Suspect Program
Tool Glossary
Table of Contents provided by Publisher. All Rights Reserved.

ISBN: 9781597494700
ISBN-10: 1597494704
Audience: General
Format: Paperback
Language: English
Number Of Pages: 616
Published: 6th January 2014
Country of Publication: NL
Dimensions (cm): 22.61 x 15.49  x 2.79
Weight (kg): 0.73