Computer Forensics: Incident Response Essentials

Preface. Acknowledgments. 1. Introduction to Computer Forensics. 2. Tracking an Offender. 3. The Basics of Hard Drives and Storage. 4. Encryption and Forensics. 5. Data Hiding. 6. Hostile Code. 7. Your Electronic Toolkit. 8. Investigating Windows Computers. 9. Introduction to Unix for Forensic Examiners. 10. Compromising a Unix Host. 11. Investigating a Unix Host. 12. Introduction to the Criminal Justice System. 13. Conclusion. Appendix A. Internet Data Center Response Plan. Appendix B. Incident Response Triage Questionnaire. Appendix C. How to Become a Unix Guru. Appendix D. Exporting a Windows 2000 Personal Certificate. Appendix E. How to Crowbar Unix Hosts. Appendix F. Creating a Linux Boot CD. Appendix G. Contents of a Forensic CD. Annotated Bibliography. Index. 0201707195T09182001