The Basics of Digital Forensics

1st Edition

The Primer for Getting Started in Digital Forensics

Authors: John Sammons
Paperback ISBN: 9781597496612
eBook ISBN: 9781597496629
Imprint: Syngress
Published Date: 24th February 2012
Page Count: 208
23.95 + applicable tax
18.99 + applicable tax
29.95 + applicable tax
Unavailable
Compatible Not compatible
VitalSource PC, Mac, iPhone & iPad Amazon Kindle eReader
ePub & PDF Apple & PC desktop. Mobile devices (Apple & Android) Amazon Kindle eReader
Mobi Amazon Kindle eReader Anything else

Institutional Access


Description

The Basics of Digital Forensics provides a foundation for people new to the digital forensics field. This book teaches you how to conduct examinations by discussing what digital forensics is, the methodologies used, key technical concepts and the tools needed to perform examinations. Details on digital forensics for computers, networks, cell phones, GPS, the cloud, and Internet are discussed. Also learn how to collect evidence, document the scene, and how deleted data is recovered.

Key Features

  • Learn all about what Digital Forensics entails
  • Build a toolkit and prepare an investigative plan
  • Understand the common artifacts to look for during an exam

Readership

Entry-level digital forensics professionals, also complimentary fields such as: law enforcement, legal, general information security.

Table of Contents

Dedication

Preface

Acknowledgments

About the Author

About the Technical Editor

Chapter 1. Introduction

Introduction

What is Forensic Science?

What is Digital Forensics?

Uses of Digital Forensics

Locard's Exchange Principle

Scientific Method

Organizations of Note

Role of the Forensic Examiner in the Judicial System

Summary

REFERENCES

Chapter 2. Key Technical Concepts

Introduction

Bits, Bytes, and Numbering Schemes

File Extensions and File Signatures

Storage and Memory

Computing Environments

Data Types

File Systems

Allocated and Unallocated Space

How Magnetic Hard Drives Store Data

Basic Computer Function—Putting it All Together

Summary

REFERENCES

Chapter 3. Labs and Tools

Introduction

Forensic Laboratories

Policies and Procedures

Quality Assurance

Digital Forensic Tools

Accreditation

Summary

REFERENCES

Chapter 4. Collecting Evidence

Introduction

Crime Scenes and Collecting Evidence

Documenting the Scene

Chain of Custody

Cloning

Live System versus Dead System

Hashing

Final Report

Summary

REFERENCES

Chapter 5. Windows System Artifacts

Introduction

Deleted Data

Hibernation File (Hiberfile.Sys)

Registry

Print Spooling

Recycle Bin

Metadata

Thumbnail Cache

Most Recently Used (MRU)

Restore Points and Shadow Copy

Prefetch

Link Files

Summary

REFERENCES

Chapter 6. Antiforensics

Introduction

Hiding Data

Password Attacks

Steganography

Data Destruction

Summary

REFERENCES

Chapter 7. Legal

Intr

Details

No. of pages:
208
Language:
English
Copyright:
© Syngress 2012
Published:
Imprint:
Syngress
eBook ISBN:
9781597496629
Paperback ISBN:
9781597496612

About the Author

John Sammons

John Sammons is an Associate Professor and Director of the undergraduate program in Digital Forensics and Information Assurance at Marshall University in Huntington, West Virginia. John teaches digital forensics, electronic discovery, information security and technology in the School of Forensic and Criminal Justices Sciences. He's also adjunct faculty with the Marshall University graduate forensic science program where he teaches the advanced digital forensics course. John, a former police officer, is also an Investigator with the Cabell County Prosecuting Attorney’s Office and a member of the West Virginia Internet Crimes Against Children Task Force. He is a Member of the American Academy of Forensic Sciences, the High Technology Crime Investigation Association, and Infragard. John is the founder and President of the Appalachian Institute of Digital Evidence. AIDE is a non-profit organization that provides research and training for digital evidence professionals including attorneys, judges, law enforcement and information security practitioners in the private sector. He is the author of best-selling book, The Basics of Digital Forensics published by Syngress.

Affiliations and Expertise

Associate Professor and Director of the Digital Forensics and Information Assurance program, Marshall University, Huntington, WV, USA

Reviews

"This book is an excellent introduction and overview of the field of Configuration Systems. It covers the most important developments in the field."--HPCMagazine.com, August 2014

 "The book is quite easy to read – the author uses colloquial language and the text flows more like long magazine articles rather than a text book. A nice addition is computer forensic case studies that are peppered throughout the book."--The Journal of Digital Forensics, Security and Law,Vol. 9, No. 1, 2014