Read “Forensic Discovery” by Dan Farmer and Wietse Venema online for free. In Forensic Discovery, two internationally recognized experts present a thorough and realistic guide to the subject.
Book Description
Dan Farmer and Wietse Venema cover both theory and hands-on practice, introducing a powerful approach that can often recover evidence considered lost forever. The authors draw on their extensive firsthand experience to cover everything from file systems, to memory and kernel hacks, to malware. They expose a wide variety of computer forensics myths that often stand in the way of success. Readers will find extensive examples from Solaris, FreeBSD, Linux, and Microsoft Windows, as well as practical guidance for writing one’s own forensic tools.
Table of Contents
- The spirit of forensic discovery
- Time Machines
- File sytem basics
- File system analysis
- Systems and subversion
- Malware analysis basics
- Persistence of deleted file information
- Beyond Processes