Malware Forensics Field Guide for Windows Systems
Digital Forensics Field Guides
By Cameron H. Malin, Eoghan Casey, James M. Aquilina
Publisher: Elsevier / Syngress
Final Release Date: May 2012
Pages: 560

Malware Forensics Field Guide for Windows Systems is a handy reference that shows students the essential tools needed to do computer forensics analysis at the crime scene. It is part of Syngress Digital Forensics Field Guides, a series of companions for any digital and computer forensic student, investigator or analyst. Each Guide is a toolkit, with checklists for specific tasks, case studies of difficult situations, and expert analyst tips that will aid in recovering data from digital media that will be used in criminal prosecution.

This book collects data from all methods of electronic data storage and transfer devices, including computers, laptops, PDAs and the images, spreadsheets and other types of files stored on these devices. It is specific for Windows-based systems, the largest running OS in the world. The authors are world-renowned leaders in investigating and analyzing malicious code. Chapters cover malware incident response - volatile data collection and examination on a live Windows system; analysis of physical and process memory dumps for malware artifacts; post-mortem forensics - discovering and extracting malware and associated artifacts from Windows systems; legal considerations; file identification and profiling initial analysis of a suspect file on a Windows system; and analysis of a suspect program.

This field guide is intended for computer forensic investigators, analysts, and specialists.



  • A condensed hand-held guide complete with on-the-job tasks and checklists
  • Specific for Windows-based systems, the largest running OS in the world
  • Authors are world-renowned leaders in investigating and analyzing malicious code
Product Details
Recommended for You
Customer Reviews

REVIEW SNAPSHOT®

by PowerReviews
oreillyMalware Forensics Field Guide for Windows Systems
 
4.0

(based on 2 reviews)

Ratings Distribution

  • 5 Stars

     

    (1)

  • 4 Stars

     

    (0)

  • 3 Stars

     

    (1)

  • 2 Stars

     

    (0)

  • 1 Stars

     

    (0)

Reviewed by 2 customers

Displaying reviews 1-2

Back to top

 
5.0

Fine to get into the arena

By JC

from La Rochelle, France

About Me Security Consultant

Verified Reviewer

Pros

  • Accurate
  • Concise
  • Easy to understand
  • Helpful examples
  • Well-written

Cons

    Best Uses

    • Expert
    • Intermediate

    Comments about oreilly Malware Forensics Field Guide for Windows Systems:

    Very dense, detailed and technical. As a non Windows specialist, I found this book perfect to get a head start.
    Much info and step by step rigorous processes to track and study malwares and produce forensic results.
    To be kept as a reference.

    (1 of 9 customers found this review helpful)

     
    3.0

    Very technical

    By MJ

    from Ohio

    About Me Consultant, Troubleshooter

    Verified Buyer

    Pros

    • Accurate
    • Well-written

    Cons

    • Needed Removal Techniques

    Best Uses

    • Expert

    Comments about oreilly Malware Forensics Field Guide for Windows Systems:

    This book is great for serious techs looking for the nuts and bolts of malware. I, however, am a consultant and troubleshooter involved regularly in removing malware. Since the appearance of Conduit, I've been looking for a good reference book on eliminating these more troublesome pieces of work and thought that this book was that help. I was wrong. I don't care about the deep technicalities, just how to effectively get rid of it.

    Displaying reviews 1-2

    Back to top

     
    Buy 2 Get 1 Free Free Shipping Guarantee
    Buying Options
    Immediate Access - Go Digital what's this?
    Ebook:  $29.95
    Formats:  ePub, Mobi, PDF