- Print ISBN 9781597499859
- Electronic ISBN 9781597499842
Placing the Suspect Behind the Keyboard is the definitive book on conducting a complete investigation of a cybercrime using digital forensics techniques as well as physical investigative procedures. This book merges a digital analysis examiner's work with the work of a case investigator in order to build a solid case to identify and prosecute cybercriminals.
Brett Shavers links traditional investigative techniques with high tech crime analysis in a manner that not only determines elements of crimes, but also places the suspect at the keyboard. This book is a first in combining investigative strategies of digital forensics analysis processes alongside physical investigative techniques in which the reader will gain a holistic approach to their current and future cybercrime investigations.
• Learn the tools and investigative principles of both physical and digital cybercrime investigations—and how they fit together to build a solid and complete case.
• Master the techniques of conducting a holistic investigation that combines both digital and physical evidence to track down the "suspect behind the keyboard."
• The only book to combine physical and digital investigative techniques.
Information Security professionals of all levels, digital forensic examiners and investigators, IT managers, InfoSec consultants, criminologists, sociologists, attorneys, law enforcement officers, Also can sell to forensic training vendors, government training courses, and high-tech crime associations.
About the Author
About the Technical Editor
Chapter 1. Introduction
Digital Evidence Collection
Simple File Copying
“Dead Box” Approaches
“Live Box” Approaches
SmartPhones and Cellular Devices
Chapter 2. High Tech Interview
The Main Goal of Questioning a Suspect
The Line of Questions for Suspects
Questions for Victims
Questions for Network Administrators
Chapter 3. Physical Investigations
Hazards of Acting Upon Minimal Information
Obtaining Personal Information
Undercover and Informant Operations
Chapter 4. Technical Investigations
Digital Investigative Techniques
Who? What? When? Why? Where? and How?
“Other” Device Forensics
Online Social Networking
Biological Forensic Evidence
Triage and Previews
Chapter 5. Putting It All Together
“2+2=Putting it all together”
Follow the Evidence
Chapter 6. Investigative Case Management
Chapter 7. Case Presentation
It’s Not Whether You Win or Lose
Organizing Case Information
Value of Visuals
The Suspect’s Machine
"The knowledge of the technologies and investigative procedures is broad, solid, and current. The claims are realistic and modest...the book makes a useful text for an introductory or refresher course in the investigation of cyber crimes..." -Computing Reviews, Oct 29, 2014