Cyber Crime Investigator's Field Guide [Paperback]

Bruce Middleton (Author)

Book Description

ISBN-10: 0849311926 | ISBN-13: 978-0849311925 | Publication Date: November 28, 2001

Long gone are the days when a computer took up an entire room. Now we have computers at home, laptops that travel just about anywhere, and data networks that allow us to transmit information from virtually any location in a timely and efficient manner. What have these advancements brought us? Another arena for criminal activity. If someone wants to focus and target something, more than likely they will obtain what they want. We shouldn't expect it to be any different in cyberspace.

Cyber Crime Field Handbook provides the details of investigating computer crime from soup to nuts. It covers everything from what to do upon arrival at the scene until the investigation is complete, including chain of evidence. You get easy access to information such as:

Questions to ask the client

Steps to follow when you arrive at the client's site

Procedures for collecting evidence

Details on how to use various evidence collection and analysis tools

How to recover lost passwords or documents that are password protected

Commonly asked questions with appropriate answers

Recommended reference materials

A case study to see the computer forensic tools in action

Commonly used UNIX/Linux commands

Port number references for various services and applications

Computer forensic software tools commands synopsis

Attack signatures

Cisco PIX firewall commands

We now have software and hardware to protect our data communication systems. We have laws that provide law enforcement more teeth to take a bite out of cyber crime. Now we need to combine understanding investigative techniques and technical knowledge of cyberspace. That's what this book does. Cyber Crime Field Handbook provides the investigative framework, a knowledge of how cyberspace really works, and the tools to investigate cyber crime…tools that tell you the who, where, what, when, why, and how.

Product Details

• Paperback: 360 pages
• Publisher: Auerbach Publications (November 28, 2001)
• Language: English
• ISBN-10: 0849311926
• ISBN-13: 978-0849311925
• Product Dimensions: 10 x 7.1 x 0.8 inches
• Shipping Weight: 1.4 pounds
• Average Customer Review: 3.8 out of 5 stars  See all reviews (4 customer reviews)
• Amazon Best Sellers Rank: #1,975,250 in Books (See Top 100 in Books)

More About the Author

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

Most Helpful Customer Reviews

16 of 17 people found the following review helpful:

2.0 out of 5 stars Author should be a Tech Rep, March 26, 2002

By 

W. M. Nett "Geminus" (Lauderhill, FL USA) - See all my reviews
(REAL NAME)   

This review is from: Cyber Crime Investigator's Field Guide (Paperback)

I've definately read better computer forensics books. 90% of the applications that the author recommends and describes how to use are not downloadable and cannot be purchased in a software store! All the links point to a 'contact a sales agent today!' This makes me ask, "Is Bruce a paid spokesperson for Forensics-Intl.com"
Additionally the author goes from very basic information to very complex information, leaving out very important middle information. I've been working with computers for more than 17 years and if I found this book to be somewhat cryptic, a newbie isn't going to understand any of the critical information that he/she should know before attempting to perform any kind of computer forensics.

15 of 16 people found the following review helpful:

5.0 out of 5 stars Cyber Crime Investigator's Field Guide, February 7, 2002

By 

Robert Mozia (San Francisco, CA) - See all my reviews

This review is from: Cyber Crime Investigator's Field Guide (Paperback)

I found this book to be fantastic. Whether you are an experienced investigator of computer network security incidents (as I am for government/military/commercial organizations) or a neophyte just getting into the field of computer forensics, this book takes you through everything you need to know. The chapter on how the author handles an investigation in detail from start to finish is great. I'm applying what I learned there already. The coverage of forensic tools such as EnCase and tools from NTI is great. He gives me step by step information on how to use these tools, which I really need because you can't remember everything to do with all the tools I am involved with. The various reference sections on web sites, tool sites, attack signatures, etc. has been extremly useful for me and various organizations I work with. It's great to have the DOJ Search & Seizure Guidelines in the book. Sure, I can go out to the DOJ website and after some searching find them, but it is difficult to work through all the various links, I can't take notes there, make underlines, etc. It's really nice to have these and other guidelines in a handy written reference. This is one book that goes with me and my team members whenever we leave for a client site. It has just about everything we need for reference purposes. The author calls it a field guide and that is just what it is. I highly recommend this book. Very practical. I just hope the author is going to write another book...no doubt we will pick it up.

8 of 8 people found the following review helpful:

3.0 out of 5 stars A few good chapters, January 29, 2002

By 

Ben Rothke "Author of 'Computer Security: 20 ... (USA) - See all my reviews
(REAL NAME)   

This review is from: Cyber Crime Investigator's Field Guide (Paperback)

I was disappointed with the Cyber Crime Investigator's Field Guide. Half of the book (Appendix G) is simply a printout of the US Department of Justice Search and Seizure Guidelines. Although the guidelines are required reading, one should not have to pay for information that is available for free on the Department of Justice Web site. Chapter 6 of the book is a series of questions and answers on various subjects. The questions and answers are valuable, but the overly brief answers do not provide readers with the rationale behind the answers.

The book is not without merit, though; Chapter 9, "Case Study," describes the general course of action a forensic examiner should take when involved in a computer investigation. The author details what he does in the course of a general forensic investigation -- from the time he gets the call, to his ride from the airport to the client site, to the on-site pre-briefing, and beyond.