Computer Forensics with FTK (FTK 電腦取證實務)
Fernando Carbone
- 出版商: Packt Publishing
- 出版日期: 2014-03-17
- 售價: $1,120
- 貴賓價: 9.5 折 $1,064
- 語言: 英文
- 頁數: 100
- 裝訂: Paperback
- ISBN: 1783559020
- ISBN-13: 9781783559022
海外代購書籍(需單獨結帳)
相關主題
商品描述
Written by a specialist in digital crime, this book helps you leverage the power of the FTX platform to conduct penetrating computer forensic investigations. With a step-by-step approach, it clarifies even the most complex processes.
Overview
- Receive step-by-step guidance on conducting computer investigations
- Explore the functionality of FTK Imager and learn to use its features effectively
- Conduct increasingly challenging and more applicable digital investigations for generating effective evidence using the FTK platform
What you will learn from this book
- Get started with Computer Forensics using the FTK platform to conduct your digital investigation
- Acquire different types of digital devices with integrity
- Find evidence in Windows registry hives using Registry View
- Understand the use of PRTK for password recovery
- Narrowing the case using filters and keyword searches
- Analyze Internet artifacts and e-mail messages
- Report results using the bookmarks features
- Learn tips and tricks to get the most out of your digital investigation results
Approach
This tutorial contains detailed instructions with useful integrated examples that help you understand the main features of FTK and how you can use it to analyze evidence. This book has clear and concise guidance in an easily accessible format.
Who this book is written for
This tutorial-based guide is great for you if you want to conduct digital investigations with an integrated platform. Whether you are new to Computer Forensics or have some experience, this book will help you get started with FTK so you can analyze evidence effectively and efficiently. If you are a law enforcement official, corporate security, or IT professional who needs to evaluate the evidentiary value of digital evidence, then this book is ideal for you.
商品描述(中文翻譯)
由數位犯罪專家撰寫,本書幫助您利用 FTX 平台的力量進行深入的電腦取證調查。透過逐步的方法,它清晰地闡明了即使是最複雜的過程。
概述
- 獲得逐步指導以進行電腦調查
- 探索 FTK Imager 的功能,並學習有效使用其特性
- 進行越來越具挑戰性且更具應用性的數位調查,以使用 FTK 平台生成有效證據
您將從本書中學到什麼
- 使用 FTK 平台開始電腦取證,進行數位調查
- 獲取完整性不同類型的數位設備
- 使用 Registry View 在 Windows 註冊表中尋找證據
- 理解 PRTK 在密碼恢復中的使用
- 使用過濾器和關鍵字搜索縮小案件範圍
- 分析網路文物和電子郵件訊息
- 使用書籤功能報告結果
- 學習技巧和竅門,以充分利用您的數位調查結果
方法
本教程包含詳細的指導和有用的整合範例,幫助您理解 FTK 的主要特性以及如何使用它來分析證據。本書提供清晰且簡明的指導,以易於訪問的格式呈現。
本書的讀者對象
如果您想使用整合平台進行數位調查,這本基於教程的指南非常適合您。無論您是電腦取證的新手還是有一些經驗,本書將幫助您開始使用 FTK,以便有效且高效地分析證據。如果您是需要評估數位證據證據價值的執法官員、企業安全或 IT 專業人員,那麼這本書對您來說是理想的選擇。