Digital Forensics with Kali Linux - Second Edition
暫譯: Kali Linux 數位鑑識學 - 第二版

Parasram, Shiva V. N.

Digital Forensics with Kali Linux - Second Edition
  • 出版商: Packt Publishing
  • 出版日期: 2020-04-17
  • 售價: $1,260
  • 貴賓價: 9.5$1,197
  • 語言: 英文
  • 頁數: 334
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1838640800
  • ISBN-13: 9781838640804
  • 相關分類: 資訊安全kali-linuxLinux

    • 立即出貨 (庫存=1)

買這商品的人也買了...

相關主題

商品描述

Take your forensic abilities and investigation skills to the next level using powerful tools that cater to all aspects of digital forensic investigations, right from hashing to reporting

Key Features

  • Perform evidence acquisition, preservation, and analysis using a variety of Kali Linux tools
  • Use PcapXray to perform timeline analysis of malware and network activity
  • Implement the concept of cryptographic hashing and imaging using Kali Linux

Book Description

Kali Linux is a Linux-based distribution that's widely used for penetration testing and digital forensics. It has a wide range of tools to help for digital forensics investigations and incident response mechanisms.

This updated second edition of Digital Forensics with Kali Linux covers the latest version of Kali Linux and The Sleuth Kit. You'll get to grips with modern techniques for analysis, extraction, and reporting using advanced tools such as FTK Imager, hex editor, and Axiom. Updated to cover digital forensics basics and advancements in the world of modern forensics, this book will also delve into the domain of operating systems. Progressing through the chapters, you'll explore various formats for file storage, including secret hiding places unseen by the end user or even the operating system. The book will also show you how to create forensic images of data and maintain integrity using hashing tools. Finally, you'll cover advanced topics such as autopsies and acquiring investigation data from networks, operating system memory, and quantum cryptography.

By the end of this book, you'll have gained hands-on experience of implementing all the pillars of digital forensics: acquisition, extraction, analysis, and presentation, all using Kali Linux tools.

What you will learn

  • Get up and running with powerful Kali Linux tools for digital investigation and analysis
  • Perform internet and memory forensics with Volatility and Xplico
  • Understand filesystems, storage, and data fundamentals
  • Become well-versed with incident response procedures and best practices
  • Perform ransomware analysis using labs involving actual ransomware
  • Carry out network forensics and analysis using NetworkMiner and other tools

Who this book is for

This Kali Linux book is for forensics and digital investigators, security analysts, or anyone interested in learning digital forensics using Kali Linux. Basic knowledge of Kali Linux will be helpful to gain a better understanding of the concepts covered.

商品描述(中文翻譯)

**提升您的取證能力和調查技能,使用強大的工具來滿足數位取證調查的各個方面,從雜湊到報告**

#### 主要特點

- 使用各種 Kali Linux 工具執行證據獲取、保存和分析
- 使用 PcapXray 進行惡意軟體和網路活動的時間線分析
- 使用 Kali Linux 實現加密雜湊和映像的概念

#### 書籍描述

Kali Linux 是一個基於 Linux 的發行版,廣泛用於滲透測試和數位取證。它擁有多種工具來協助數位取證調查和事件響應機制。

這本《使用 Kali Linux 的數位取證》第二版更新了 Kali Linux 和 The Sleuth Kit 的最新版本。您將掌握使用 FTK Imager、十六進位編輯器和 Axiom 等先進工具進行分析、提取和報告的現代技術。這本書更新了數位取證的基本知識和現代取證領域的進展,還將深入探討作業系統的領域。在各章中,您將探索各種檔案儲存格式,包括終端使用者或甚至作業系統無法看到的秘密隱藏位置。這本書還將教您如何創建數據的取證映像並使用雜湊工具維護完整性。最後,您將涵蓋高級主題,如屍檢和從網路、作業系統記憶體及量子密碼學中獲取調查數據。

在本書結束時,您將獲得實踐經驗,實施數位取證的所有支柱:獲取、提取、分析和呈現,全部使用 Kali Linux 工具。

#### 您將學到什麼

- 使用強大的 Kali Linux 工具進行數位調查和分析
- 使用 Volatility 和 Xplico 執行網際網路和記憶體取證
- 理解檔案系統、儲存和數據基礎知識
- 熟悉事件響應程序和最佳實踐
- 使用涉及實際勒索軟體的實驗室進行勒索軟體分析
- 使用 NetworkMiner 和其他工具執行網路取證和分析

#### 本書適合誰

這本 Kali Linux 書籍適合取證和數位調查員、安全分析師,或任何有興趣使用 Kali Linux 學習數位取證的人。對 Kali Linux 的基本知識將有助於更好地理解所涵蓋的概念。

作者簡介

Shiva V. N. Parasram is the Executive Director and CISO of the Computer Forensics and Security Institute, which specializes in penetration testing, forensics, and advanced cybersecurity training. As the only Certified EC-Council Instructor (CEI) in the Caribbean, he has also trained hundreds in CCNA, CND, CEH, CHFI, ECSA, and CCISO, among other certifications. He has partnered with international companies including Fujitsu (Trinidad) and Take It To The Top LLC as the lead trainer for advanced cybersecurity courses. Shiva is also the author of two other books from Packt Publishing and has delivered workshops, lectures, and keynote speeches regionally for ISACA, universities, law associations, and other institutions.

作者簡介(中文翻譯)

Shiva V. N. Parasram是計算機取證與安全研究所的執行董事兼首席資訊安全官(CISO),該研究所專注於滲透測試、取證和高級網絡安全培訓。作為加勒比地區唯一的認證EC-Council講師(CEI),他已培訓數百名學員獲得CCNA、CND、CEH、CHFI、ECSA和CCISO等多項認證。他與包括富士通(Trinidad)和Take It To The Top LLC在內的國際公司合作,擔任高級網絡安全課程的首席講師。Shiva還是Packt Publishing出版的另外兩本書的作者,並為ISACA、大學、法律協會及其他機構在區域內舉辦了工作坊、講座和主題演講。

目錄大綱

  1. Introduction to Digital Forensics
  2. Installing Kali Linux
  3. Understanding Filesystems and Storage Media
  4. Incident Response and Data Acquisition
  5. Evidence Acquisition and Preservation with dc3dd and Guymager
  6. File Recovery and Data Carving with foremost, Scalpel, and bulk_extractor
  7. Memory Forensics with Volatility
  8. Artifact Analysis
  9. Autopsy
  10. Analysis with Xplico
  11. Network Analysis

目錄大綱(中文翻譯)


  1. Introduction to Digital Forensics

  2. Installing Kali Linux

  3. Understanding Filesystems and Storage Media

  4. Incident Response and Data Acquisition

  5. Evidence Acquisition and Preservation with dc3dd and Guymager

  6. File Recovery and Data Carving with foremost, Scalpel, and bulk_extractor

  7. Memory Forensics with Volatility

  8. Artifact Analysis

  9. Autopsy

  10. Analysis with Xplico

  11. Network Analysis

類似商品