Sorry, this item is not available in
Image not available for
Color:
Image not available

To view this video download Flash Player

 
Have one to sell? Sell yours here
Tell the Publisher!
I'd like to read this book on Kindle

Don't have a Kindle? Get your Kindle here, or download a FREE Kindle Reading App.

EnCase Computer Forensics, includes DVD: The Official EnCE: EnCase Certified Examiner Study Guide [Paperback]

by Steve Bunting
4.1 out of 5 stars  See all reviews (31 customer reviews)


Available from these sellers.


Free Two-Day Shipping for College Students with Amazon Student

Formats

Amazon Price New from Used from
Kindle Edition --  
Paperback --  
Sell Us Your Books
Get up to 80% back when you sell us your books, even if you didn't buy them at Amazon. Learn more
There is a newer edition of this item:
EnCase Computer Forensics -- The Official EnCE: EnCase Certified Examiner Study Guide EnCase Computer Forensics -- The Official EnCE: EnCase Certified Examiner Study Guide 4.1 out of 5 stars (13)
$36.14
In Stock.

Book Description

December 5, 2007 0470181451 978-0470181454 2
EnCE certification tells the world that you've not only mastered the use of EnCase Forensic Software, but also that you have acquired the in-depth forensics knowledge and techniques you need to conduct complex computer examinations. This official study guide, written by a law enforcement professional who is an expert in EnCE and computer forensics, provides the complete instruction, advanced testing software, and solid techniques you need to prepare for the exam.

Note: CD-ROM/DVD and other supplementary materials are not included as part of eBook file.



Editorial Reviews

From the Back Cover

Fully revised for the very latest EnCE exam and EnCase software

EnCE certification tells the world that you've not only mastered the use of EnCase Forensic Software, but also that you have acquired the in-depth forensics knowledge and techniques you need to conduct complex computer examinations. This official study guide, written by a law enforcement professional who is an expert in EnCE and computer forensics, provides the complete instruction, advanced testing software, and solid techniques you need to prepare for the exam.

Key topics include:

  • Understanding Computer Hardware. Understanding computer components, boot processes, partitions, and files systems, so you can explain them to a jury

  • First Response. What to do and how to follow procedures when first entering a scene

  • Acquisition of Digital Evidence. Creating EnCase boot disks; booting with EnCase boot disks; and drive-to-drive, network cable, FastBloc, Linen, and Enterprise acquisitions

  • EnCase Forensic Software Overview. Tour of EnCase environment including software, menus, and capabilities

  • Report Writing. Sample reports from real-life cases (names changed)

  • EnCase Legal Journal. Essential information on operating within the law and giving expert testimony

Look inside for complete coverage of all exam objectives.

About the Author

Steve Bunting, EnCE, CCFT, is a Captain with the University of Delaware Police Department where he is responsible for computer forensics, video forensics, and investigations involving computers. With over 30 years of experience in law enforcement, Steve has conducted computer forensic examinations for local, state, and federal agencies and has testified in court on numerous occasions as a computer forensics expert. He is coauthor of Mastering Windows Network Forensics and Investigation (Sybex).

Product Details

  • Paperback: 648 pages
  • Publisher: Sybex; 2 edition (December 5, 2007)
  • Language: English
  • ISBN-10: 0470181451
  • ISBN-13: 978-0470181454
  • Product Dimensions: 9.2 x 7.4 x 1.3 inches
  • Shipping Weight: 2.2 pounds
  • Average Customer Review: 4.1 out of 5 stars  See all reviews (31 customer reviews)
  • Amazon Best Sellers Rank: #316,650 in Books (See Top 100 in Books)

More About the Author

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

Most Helpful Customer Reviews
44 of 45 people found the following review helpful
3.0 out of 5 stars For help with EnCase in book form, start here October 9, 2006
Format:Paperback
I decided to read and review three digital forensics books in order to gauge their strengths and weaknesses: "File System Forensic Analysis" (FSFA) by Brian Carrier, "Windows Forensics" (WF) by Chad Steel, and "EnCase Computer Forensics" (ECF) by Steve Bunting and William Wei. All three books contain the word "forensics" in the title, but they are very different. If you want authoritative and deeply technical guidance on understanding file systems, read FSFA. If you want to focus on understanding Windows from an investigator's standpoint, read WA. If you want to know more about EnCase (and are willing to tolerate or ignore information about forensics itself), read ECF.

In the spirit of full disclosure I should mention I am co-author of a forensics book ("Real Digital Forensics") and Brian Carrier cites my book "The Tao of Network Security Monitoring" on p 10. I tried to not let those facts sway my reviews.

In terms of overall book value, ECF is the weakest of the three previously mentioned -- but it is the only book on EnCase. As such it is the one independent book which will help you understand the king of the commercial forensics world. I was particularly interested in using the accompanying DVD, which offered a demo version of EnCase. I did encounter the same limitations as mentioned in previous reviews, but I was able to at least perform most of the numbered exercises in the text. I thought the fairly crippled version of EnCase packaged with the book was a drawback, but I know Guidance Software is paranoid about even discussing their product outside of their training environment.

As far as covering EnCase goes, ECF is a pretty good book. I am an EnCase newbie, but I was able to follow most of the book's discussion of the product's interface.
Read more ›
Was this review helpful to you?
10 of 10 people found the following review helpful
5.0 out of 5 stars Highly recommended June 29, 2006
Format:Paperback
Steve Bunting is the head of the police computer forensics unit in Delaware and, together with co-author William Wei, a computer crime detective in New Jersey, has written an outstanding book which should find a place on every computer forensic examiner's bookshelf - even the bookshelves of those who rarely, if ever, use EnCase as a forensic tool.

This is a fairly thick book at 500 plus pages and a quick flick through reveals that the text is satisfyingly dense and interspersed with a generous number of screenshots. This is certainly not one of those technology books which tries to impress by its sheer physical size but disappoints once opened to reveal a large font and too much white space!

Although the title bills this book as "The Official EnCE EnCase Certified Examiner Study Guide" there is a huge amount of information contained within which will be of use to both the experienced investigator and keen student regardless of their forensic tool of choice. Bunting starts with a concise yet remarkably clear and in depth discussion of computer hardware in chapter 1. After covering a wide range of components he moves on to the boot process, then partitions and filesystems (in general). Even at this early stage it is clear that Bunting can write, and write well. In addition to the depth of knowledge he displays his tone is engaging and he possesses a remarkable ability to describe somewhat complicated technical subject matter with great clarity. Each chapter ends with a summary and an overview of those aspects of the EnCE exam covered, together with a set of review questions (provided, along with many of the "real world scenario" sections, by co-author William Wei).
Read more ›
Comment | 
Was this review helpful to you?
12 of 13 people found the following review helpful
2.0 out of 5 stars The DVD software is full of errors... June 20, 2006
By W. Ng
Format:Paperback
Bought the book some 3 weeks ago and had gone through the entire book.

The contents are good and beneficial, but the provided evaluation Encase version 5 is not working properly.

Many of the exercises stated in the book cannot be carried out because those necessary features needed are not activated in the provided software. But the book said the provided software is constructed for us to go through all the exercises in preparation for the Phase II practical test.

Wrote a complaint to the publisher and they acknowledged the errors in the software but then they do nothing to resolve it...I sort of feeling being cheated and it seems like it is a strategy they are using to force us to spend the huge sum of money to buy the commercial Encase software.
Comment | 
Was this review helpful to you?
4 of 4 people found the following review helpful
Format:Paperback
Great book! Whether you are going for your EnCE certification or just getting started in the hot field of computer forensics this is a great place to start. This book takes you from the basic computer components (However - If you don't know what a CPU is at this point you better do a lot more reading and get out of your house every once in a while) through the depths of capturing and reporting data. The authors of this book sprinkle in real life law enforcement experience which makes this book much more that just a "tech manual".

Encase is a very powerful piece of software used by most large law enforcement agencies and corporations that perform computer forensics. This book will show you how to collect data (evidence), understand the data EnCase presents and report on it.

I would recommend it for anyone interested in the computer forensics and how computers really work and store data.
Comment | 
Was this review helpful to you?
Most Recent Customer Reviews
5.0 out of 5 stars Happy
Happy with the quick service so that I wouldn't get behind in class! This will help me achieve a decent grade in class.
Published 1 month ago by Laura F. Stillman
5.0 out of 5 stars Good book, very much reading.
Very Good book. Steve Bunting does a nice job of laying procedures and processes out for the reader. Reading this book will provide good tips and techniques for you. Read more
Published 4 months ago by Sam Pepenella
3.0 out of 5 stars Great but you might as well stay with digital copy
This book contains vast knowledge about not only encase but computer forensics in general. The author is obviously very experienced and well written. Read more
Published 14 months ago by Andrew Pense
1.0 out of 5 stars dont bother ordering the kindle version
The kindle version does not have anyway to access the software required to do the lessosn in this book. If you order the fersion with the cd it comes with a pdf version. Read more
Published 24 months ago by William G. Mitchell
5.0 out of 5 stars Most useful book
great book! I read through the entire book and reviewed all the practice exams.- everything in this book was on the test. This is a must for the ENCE Cert
Published on February 1, 2012 by TUNG TRIN
3.0 out of 5 stars Good resource, but DON'T DEPEND ON THE DVD SOFTWARE
**For investing only $3000+ more, you, too, can actually practice using EnCase with the case files found on the accompanying DVD. Read more
Published on February 25, 2011 by IT Snoop
5.0 out of 5 stars Best resouce..... period!
I read this book cover-to-cover. Then I read it again and took the practice tests. Since I don't have a CS degree but I want to go into computer forensics, I was taking a... Read more
Published on February 8, 2011 by sunny
3.0 out of 5 stars DVD is a drawback
Informative book. However, it would be nice if the evaluation copy of ENCASE actually allowed you to complete the exercises located within the accompanying book. Read more
Published on January 9, 2011 by GUS
5.0 out of 5 stars Great Study Material
I read this book went to take the exam and scored 94. Book and practice test on the CD are great. Highly recommended for EnCE exam prep.
Published on January 30, 2010 by John Deere
5.0 out of 5 stars Just What is Supposed to Be
This book is just what I was wanting. I would buy it again if I needed it.
Published on November 9, 2009 by Patrick L. Blythe
Search Customer Reviews
Only search this product's reviews
ARRAY(0xa39fc6fc)


Forums

Topic From this Discussion
is this for test version 6 or 7?
This is for version 6, there is a newer edition for version 7 - ISBN-13: 978-0470901069 EnCase Computer Forensics -- The Official EnCE: EnCase Certified Examiner Study Guide Read more
Aug 20, 2012 by Oleksiy |  See all 2 posts
Have something you'd like to share about this product?
Start a new discussion
Topic:
First post:
Prompts for sign-in
 


Search Customer Discussions
Search all Amazon discussions


Look for Similar Items by Category