XWe have detected your location as outside the U.S/Canada, if you think this is wrong, you can choose your location.

Macmillan Higher Education Celebrating 20 years of Macmillan Study Skills

Cart

Continue Shopping
All prices are shown including VAT
The submitted promocode is invalid
Discount code already used. It can only be used once.
* Applied promocode: ×

Important information on your ebook order

Fundamentals of Digital Forensics

Theory, Methods, and Real-Life Applications

Author(s):
Publisher:

Springer

Pages: 230
Further Actions:

Recommend to library

AVAILABLE FORMATS

Paperback - 9783319963181

01 August 2018

€40.08

Free Shipping

In stock

Ebook - 9783319963198

31 July 2018

€32.12

In stock

All prices are shown including VAT

This hands-on textbook provides an accessible introduction to the fundamentals of digital forensics. The text contains thorough coverage of the theoretical foundations, explaining what computer forensics is, what it can do,...

Show More

This hands-on textbook provides an accessible introduction to the fundamentals of digital forensics. The text contains thorough coverage of the theoretical foundations, explaining what computer forensics is, what it can do, and also what it can’t. A particular focus is presented on establishing sound forensic thinking and methodology, supported by practical guidance on performing typical tasks and using common forensic tools. Emphasis is also placed on universal principles, as opposed to content unique to specific legislation in individual countries.

Topics and features: introduces the fundamental concepts in digital forensics, and the steps involved in a forensic examination in a digital environment; discusses the nature of what cybercrime is, and how digital evidence can be of use during criminal investigations into such crimes; offers a practical overview of common practices for cracking encrypted data; reviews key artifacts that have proven to be important in several cases, highlighting where to find these and how to correctly interpret them; presents a survey of various different search techniques, and several forensic tools that are available for free; examines the functions of AccessData Forensic Toolkit and Registry Viewer; proposes methods for analyzing applications, timelining, determining the identity of the computer user, and deducing if the computer was remote controlled; describes the central concepts relating to computer memory management, and how to perform different types of memory analysis using the open source tool Volatility; provides review questions and practice tasks at the end of most chapters, and supporting video lectures on YouTube.

This easy-to-follow primer is an essential resource for students of computer forensics, and will also serve as a valuable reference for practitioners seeking instruction on performing forensic examinations in law enforcement or in the private sector.

Show Less

Offers insights drawn from the author's many years of practical experience in digital forensics

Presents a strong theoretical discussion on forensic concepts and important considerations during a forensic examination

Contains a detailed section that describes and discusses important artifacts

Provides review questions and practice tasks at the end of most chapters, and supporting video lectures on YouTube

Part I: Theory.- What is Digital Forensics?
Cybercrime, Cyber-Aided Crime and Digital Evidence.- Computer Theory.- Notable Artifacts
Decryption and Password Enforcing
Collecting Evidence.- Analyzing Data and Writing Reports.- Part II: Put It to Practice.- Collecting Data.- Indexing and Searching.- Cracking.- Finding Artifacts.- Some Common Questions.- FTK Specifics.- Open Source or Freeware Tools.- Part III: Memory Forensics.- Memory Management
Volatility
Memory Analysis in Criminal Investigations
Malware Analysis.- Part IV: Appendices
Appendix A – Solutions
Appendix B – Useful Scripts
Appendix C – Sample Report (Template)
Appendix D – List of Time Zones
Appendix E – complete Jitsi Chat Log.

Add a review

​Joakim Kävrestad is a Lecturer in informatics at the University of Skövde, Sweden, with several years of experience as a forensic expert with the Swedish police.

Show More

​Joakim Kävrestad is a Lecturer in informatics at the University of Skövde, Sweden, with several years of experience as a forensic expert with the Swedish police.

Show Less

New Publications 

Best Sellers