Incident Response: Computer Forensics Toolkit
暫譯: 事件響應:電腦取證工具包
Douglas Schweitzer
- 出版商: Hungry Minds
- 出版日期: 2003-05-02
- 售價: $1,780
- 貴賓價: 9.5 折 $1,691
- 語言: 英文
- 頁數: 345
- 裝訂: Paperback
- ISBN: 0764526367
- ISBN-13: 9780764526367
已過版
買這商品的人也買了...
-
C++ Primer, 3/e 中文版$980$774 -
Thinking in Java 中文版 (Thinking in Java, 2/e)$920$727 -
$1,029Operating System Concepts, 6/e (Windows XP Update) -
演算法導論 (Introduction to Algorithms, 2/e)$860$679 -
Radius : Securing Public Access to Private Resource$1,590$1,511 -
學物件導向的第1本書$250$195 -
鳥哥的 Linux 私房菜$560$476 -
Java 2 全方位學習(J2SDK 1.4 增修版)$650$514 -
Sun Certified Programmer & Developer for Java 2 Study Guide, 2/e$1,930$1,834 -
作業系統概念 (Operating System Concepts, 6/e Windows XP Update)$780$741 -
作業系統 (Operating Systems, 4/e)$680$537 -
802.11 無線網路技術通論 (802.11 Wireless Networks: The Definitive Guide)$760$600 -
ASP.NET 程式設計徹底研究$590$466 -
Head First Java$1,590$1,511 -
STRUTS 實作手冊(Struts in Action: Building Web Applications with the Leading Java Framework)$690$538 -
Incident Response and Computer Forensics, 2/e (Paperback)$2,220$2,109 -
鳥哥的 Linux 私房菜-伺服器架設篇$750$638 -
鳥哥的 Linux 私房菜─基礎學習篇增訂版$560$476 -
CCNA Self-Study: Interconnecting Cisco Network Devices (ICND) 640-811, 640-801, 2/e$2,390$2,271 -
Eclipse 實作手冊─活用 Java 整合開發環境 (Eclipse in Action: A Guide for the Java Developer)$450$351 -
計算機組織與結構 (Computer Systems Organization and Architecture)$660$521 -
人月神話:軟體專案管理之道 (20 週年紀念版)(The Mythical Man-Month: Essays on Software Engineering, Anniversary Edition, 2/e)$480$379 -
實戰 Excel VBA 2003 程式設計實務$480$408 -
RFID 技術與應用$480$379 -
InDesign CS 蝴蝶效 IN$720$612
商品描述
* Incident response and forensic investigation are the processes of detecting
attacks and properly extracting evidence to report the crime and conduct audits
to prevent future attacks
* This much-needed reference covers the
methodologies for incident response and computer forensics, Federal Computer
Crime law information and evidence requirements, legal issues, and working with
law enforcement
* Details how to detect, collect, and eradicate breaches in
e-mail and malicious code
* CD-ROM is packed with useful tools that help
capture and protect forensic data; search volumes, drives, and servers for
evidence; and rebuild systems quickly after evidence has been obtained
Table of Contents
Acknowledgments.
Introduction.
Chapter 1: Computer Forensics and Incident Response Essentials.
Chapter 2: Addressing Law Enforcement Considerations.
Chapter 3: Forensic Preparation and Preliminary Response.
Chapter 4: Windows Registry, Recycle Bin, and Data Storage.
Chapter 5: Analyzing and Detecting Malicious Code and Intruders.
Chapter 6: Retrieving and Analyzing Clues.
Chapter 7: Procedures for Collecting and Preserving Evidence.
Chapter 8: Incident Containment and Eradication of Vulnerabilities.
Chapter 9: Disaster Recovery and Follow-Up.
Chapter 10: Responding to Different Types of Incidents.
Chapter 11: Assessing System Security to Prevent Further Attacks.
Chapter 12: Pulling It All Together.
Appendix A: What’s on the CD-ROM.
Appendix B: Commonly Attacked Ports.
Appendix C: Field Guidance on USA Patriot Act 2001.
Appendix D: Computer Records and the Federal Rules of Evidence.
Appendix E: Glossary.
Index.
商品描述(中文翻譯)
* 事件響應和取證調查是檢測攻擊和正確提取證據以報告犯罪並進行審計以防止未來攻擊的過程。
* 這本急需的參考書涵蓋了事件響應和計算機取證的方法論、聯邦計算機犯罪法的信息和證據要求、法律問題以及與執法機構合作的內容。
* 詳細說明如何檢測、收集和消除電子郵件和惡意代碼中的漏洞。
* CD-ROM 裝載了有用的工具,幫助捕獲和保護取證數據;搜索卷、驅動器和伺服器以尋找證據;並在獲取證據後快速重建系統。
**目錄**
致謝。
引言。
第 1 章:計算機取證和事件響應基礎。
第 2 章:處理執法考量。
第 3 章:取證準備和初步響應。
第 4 章:Windows 註冊表、回收站和數據存儲。
第 5 章:分析和檢測惡意代碼和入侵者。
第 6 章:檢索和分析線索。
第 7 章:收集和保存證據的程序。
第 8 章:事件控制和漏洞消除。
第 9 章:災難恢復和後續處理。
第 10 章:對不同類型事件的響應。
第 11 章:評估系統安全以防止進一步攻擊。
第 12 章:整合所有內容。
附錄 A:CD-ROM 上的內容。
附錄 B:常見攻擊端口。
附錄 C:美國愛國者法案 2001 的現場指導。
附錄 D:計算機記錄和聯邦證據規則。
附錄 E:術語表。
索引。
