The online computer book shop for UK & Europe                                   

   Books Home | About Us | Index | Next Record | Browse

 
  

Tel: 0121 706 6000 

Static Book Details Page - Computer Manuals Website

 Malware Forensics: Investigating & Analyzing Malicious Code
  

  Malware Forensics: Investigating & Analyzing Malicious Code by Cameron H. Malin ; Eoghan Casey ; James M. Aquilina

  • Published by: SYNGRESS MEDIA
  • Author: Cameron H. Malin ; Eoghan Casey ; James M. Aquilina
  • Page Count: 674
  • Group: SECURITY & ENCRYPTION
  • ISBN: 159749268X/9781597492683
  • Published: Aug 2008

Our Price: 29.96
Discount: 25%
RRP: 39.95 

For Latest Pricing and Availability Click Here
 

 The online computer book shop for UK & Europe

Book store with some thing for everyone

Book Information and Description:

Malware Forensics: Investigating & Analyzing Malicious Code
 Malware Forensics: Investigating and Analyzing Malicious Code covers the emerging and evolving field of "live forensics," where investigators examine a computer system to collect and preserve critical live data that may be lost if the system is shut down. Unlike other forensic texts that discuss "live forensics" on a particular operating system, or in a generic context, this book emphasizes a live forensics and evidence collection methodology on both Windows and Linux operating systems in the context of identifying and capturing malicious code and evidence of its effect on the compromised system. Malware Forensics: Investigating and Analyzing Malicious Code also devotes extensive coverage of the burgeoning forensic field of physical and process memory analysis on both Windows and Linux platforms. This book provides clear and concise guidance as to how to forensically capture and examine physical and process memory as a key investigative step in malicious code forensics. Prior to this book, competing texts have described malicious code, accounted for its evolutionary history, and in some instances, dedicated a mere chapter or two to analyzing malicious code. Conversely, Malware Forensics: Investigating and Analyzing Malicious Code emphasizes the practical "how-to" aspect of malicious code investigation, giving deep coverage on the tools and techniques of conducting runtime behavioral malware analysis (such as file, registry, network and port monitoring) and static code analysis (such as file identification and profiling, strings discovery, armoring/packing detection, disassembling, debugging), and more.

CONTENTS:

Chapter 1:

Malware Incident Response: Volatile Data Collection and Examination on a Live Windows System

Chapter 2:

Malware Incident Response: Volatile Data Collection and Examination on a Live Linux System

Chapter 3:

Memory Forensics: Analyzing Physical and Process Memory Dumps for Malware Artifacts

Chapter 4:

Post-Mortem Forensics: Discovering and Extracting Malware and Associated Artifacts from Windows Systems

Chapter 5:

Post-Mortem Forensics: Discovering and Extracting Malware and Associated Artifacts from Linux Systems

Chapter 6:

Legal Considerations

Chapter 7:

File Identification and Profiling: Initial Analysis of a Suspect File on a Windows System

Chapter 8:

File Identification and Profiling: Initial Analysis of a Suspect File On a Linux System

Chapter 9:

Analysis of a Suspect Program: Windows

Chapter 10:

Analysis of a Suspect Program: Linux Index