Windows forensics : the field guide for conducting corporate computer investigations /
By: Steel, Chad.
Publisher: Indianapolis, IN : Wiley Pub., c2006Description: xvii, 382 p. : ill. ; 24 cm.Content type: text Media type: unmediated Carrier type: volumeISBN: 9780470038628; 9780470038628:.Subject(s): Microsoft Windows (Computer file) -- Security measures | Computer crimes -- Investigation -- United States -- Methodology | Computer networks -- Security measures
| Internet -- Security measures | Computer securityDDC classification: 363.25968 | Item type | Current library | Call number | Copy number | Status | Date due | Barcode | Item holds |
|---|---|---|---|---|---|---|---|
Standard Loan
|
ATU Sligo Yeats Library Main Lending Collection | 363.25968 STE (Browse shelf(Opens below)) | 1 | Available | 0067933 |
Includes bibliographical references, appendices and index.
Windows forensics -- Processing the digital crime scene -- Windows forensics basics -- Partitions and file systems -- Directory structure and special files -- The registry -- Forensic analysis -- Live system analysis -- Forensic duplication -- File system analysis -- Log file analysis -- Internet usage analysis -- Email investigations -- App. A. Sample chain of custody form -- App. B. Master boot record layout -- App. C. Partition types -- App. D. Fat32 boot sector layout -- App. E. NTFS boot sector layout -- App. F. NTFS metafiles -- App. G. Well-known SIDs -- Index.