Malware Forensics Field Guide for Linux Systems
Author | : Eoghan Casey |
Publisher | : Newnes |
Total Pages | : 615 |
Release | : 2013-12-07 |
ISBN-10 | : 9781597494717 |
ISBN-13 | : 1597494712 |
Rating | : 4/5 (712 Downloads) |
Download or read book Malware Forensics Field Guide for Linux Systems written by Eoghan Casey and published by Newnes. This book was released on 2013-12-07 with total page 615 pages. Available in PDF, EPUB and Kindle. Book excerpt: Malware Forensics Field Guide for Linux Systems is a handy reference that shows students the essential tools needed to do computer forensics analysis at the crime scene. It is part of Syngress Digital Forensics Field Guides, a series of companions for any digital and computer forensic student, investigator or analyst. Each Guide is a toolkit, with checklists for specific tasks, case studies of difficult situations, and expert analyst tips that will aid in recovering data from digital media that will be used in criminal prosecution. This book collects data from all methods of electronic data storage and transfer devices, including computers, laptops, PDAs and the images, spreadsheets and other types of files stored on these devices. It is specific for Linux-based systems, where new malware is developed every day. The authors are world-renowned leaders in investigating and analyzing malicious code. Chapters cover malware incident response - volatile data collection and examination on a live Linux system; analysis of physical and process memory dumps for malware artifacts; post-mortem forensics - discovering and extracting malware and associated artifacts from Linux systems; legal considerations; file identification and profiling initial analysis of a suspect file on a Linux system; and analysis of a suspect program. This book will appeal to computer forensic investigators, analysts, and specialists. - A compendium of on-the-job tasks and checklists - Specific for Linux-based systems in which new malware is developed every day - Authors are world-renowned leaders in investigating and analyzing malicious code