The Official CHFI Study Guide (Exam 312-49) and over one million other books are available for Amazon Kindle. Learn more

Sorry, this item is not available in
Image not available for
Image not available

To view this video download Flash Player


Sign in to turn on 1-Click ordering
Sell Us Your Item
For a $2.00 Gift Card
Trade in
More Buying Choices
Have one to sell? Sell yours here
Start reading The Official CHFI Study Guide on your Kindle in under a minute.

Don't have a Kindle? Get your Kindle here, or download a FREE Kindle Reading App.

The Official CHFI Study Guide (Exam 312-49): for Computer Hacking Forensic Investigator [Paperback]

by Dave Kleiman, Craig Wright, Jesse "James" Varsalone, Timothy Clinton, Michael Gregg
3.9 out of 5 stars  See all reviews (15 customer reviews)

List Price: $66.95
Price: $59.61 & FREE Shipping. Details
You Save: $7.34 (11%)
o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o
Only 5 left in stock (more on the way).
Ships from and sold by Gift-wrap available.
Want it Monday, April 28? Choose One-Day Shipping at checkout. Details
Free Two-Day Shipping for College Students with Amazon Student


Amazon Price New from Used from
Kindle Edition $50.39  
Paperback $59.61  
Shop the new
New! Introducing the, a hub for Software Developers and Architects, Networking Administrators, TPMs, and other technology professionals to find highly-rated and highly-relevant career resources. Shop books on programming and big data, or read this week's blog posts by authors and thought-leaders in the tech industry. > Shop now

Book Description

October 8, 2007 1597491977 978-1597491976 1
This is the official CHFI (Computer Hacking Forensics Investigator) study guide for professionals studying for the forensics exams and for professionals needing the skills to identify an intruder's footprints and properly gather the necessary evidence to prosecute.

The EC-Council offers certification for ethical hacking and computer forensics. Their ethical hacker exam has become very popular as an industry gauge and we expect the forensics exam to follow suit.

Material is presented in a logical learning sequence: a section builds upon previous sections and a chapter on previous chapters. All concepts, simple and complex, are defined and explained when they appear for the first time. This book includes: Exam objectives covered in a chapter are clearly explained in the beginning of the chapter, Notes and Alerts highlight crucial points, Exam's Eye View emphasizes the important points from the exam's perspective, Key Terms present definitions of key terms used in the chapter, Review Questions contains the questions modeled after real exam questions based on the material covered in the chapter. Answers to the questions are presented with explanations. Also included is a full practice exam modeled after the real exam.

* The only study guide for CHFI, provides 100% coverage of all exam objectives.
* Full web-based exam with explanations of correct and incorrect answers
* CHFI Training runs hundreds of dollars for self tests to thousands of dollars for classroom training.

Frequently Bought Together

The Official CHFI Study Guide (Exam 312-49): for Computer Hacking Forensic Investigator + CEH Certified Ethical Hacker All-in-One Exam Guide
Price for both: $90.36

Buy the selected items together

Customers Who Bought This Item Also Bought

Editorial Reviews

About the Author

Dave Kleiman (CAS, CCE, CIFI, CISM, CISSP, ISSAP, ISSMP, MCSE) has worked in the Information Technology Security sector since 1990. Currently, he is the owner of, and is the Chief Information Security Officer for Securit-e-Doc, Inc. Before starting this position, he was Vice President of Technical Operations at Intelliswitch, Inc., where he supervised an international telecommunications and Internet service provider network. Dave is a recognized security expert. A former Florida Certified Law Enforcement Officer, he specializes in computer forensic investigations, incident response, intrusion analysis, security audits, and secure network infrastructures. He has written several secure installation and configuration guides about Microsoft technologies that are used by network professionals. He has developed a Windows Operating System lockdown tool, S-Lok ( ), which surpasses NSA, NIST, and Microsoft Common Criteria Guidelines. Dave was a contributing author to Microsoft Log Parser Toolkit (Syngress Publishing, ISBN: 1-932266-52-6). He is frequently a speaker at many national security conferences and is a regular contributor to many security-related newsletters, Web sites, and Internet forums. Dave is a member of several organizations, including the International Association of Counter Terrorism and Security Professionals (IACSP), International Society of Forensic Computer Examiners® (ISFCE), Information Systems Audit and Control Association® (ISACA), High Technology Crime Investigation Association (HTCIA), Network and Systems Professionals Association (NaSPA), Association of Certified Fraud Examiners (ACFE), Anti Terrorism Accreditation Board (ATAB), and ASIS International®. He is also a Secure Member and Sector Chief for Information Technology at The FBI's InfraGard® and a Member and Director of Education at the International Information Systems Forensics Association (IISFA).

Product Details

  • Paperback: 960 pages
  • Publisher: Syngress; 1 edition (October 8, 2007)
  • Language: English
  • ISBN-10: 1597491977
  • ISBN-13: 978-1597491976
  • Product Dimensions: 9.2 x 7.6 x 2.4 inches
  • Shipping Weight: 3.6 pounds (View shipping rates and policies)
  • Average Customer Review: 3.9 out of 5 stars  See all reviews (15 customer reviews)
  • Amazon Best Sellers Rank: #692,370 in Books (See Top 100 in Books)

More About the Authors

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

Most Helpful Customer Reviews
9 of 9 people found the following review helpful
4.0 out of 5 stars Excellent resource and guide November 2, 2008
Format:Paperback|Verified Purchase
I purchased this book in August as one of the pieces for my self training for the computer forensics discipline. I purchased it with the intent of downloading the PDF version and putting it on my Amazon Kindle so I could easily carry the book with me. I've been very satisfied with the content, especially the numerous links to related material. Mr. Kleiman brought together a group of people each of whom made a significant contribution to an excellent product.

As one reviewer has noted, there are weaknesses, especially in the proofreading and editing. This reflects on the publisher rather than the author as I'll detail below this. I can easily get past those weaknesses because this isn't a literary work.

As it turns out, the weaknesses were not caused by Mr. Kleiman or the other contributors to the book. In the process of acquiring the PDF that was to be included in the purchase price I learned that Syngress has been having problems, probably financially based, for quite some time. This resulted in delivering products that had not been fully prepared as was the case with this book. Mr. Kleiman as an author submitted in good faith a book to be proofread, edited and published. He provided content that easily justified the price of the book and expected Syngress to fine tune the product before releasing it.

Several days after purchasing the book I made my first of several attempts to contact Syngress and download my promised PDF copy. After several phone calls and emails I realized I was wasting my time. I then sent an email to David Kleiman and at about the same time I learned that Syngress had closed their doors and was being taken over by Elsevier. Mr. Kleiman and I exchanged emails for a month or so as he worked with the kind folks at Elsevier to get the PDF to me.
Read more ›
Comment | 
Was this review helpful to you?
16 of 19 people found the following review helpful
1.0 out of 5 stars Sloppy, Sloppy, Sloppy May 28, 2008
By Lumpus
Rarely have I seen less information in so many pages. This book is poorly organized, riddled with inaccuracies and typos, and appears hopelessly outdated in many cases. (Frequent references to floppy disks and MS-DOS make me wonder where these authors have been since, oh, 1994).

Here's a clear example of the slovenliness of the book and its editors. The summary of the "PDA, Blackberry, and iPod Forensics" chapter contains no reference to the iPod. Obviously, the iPod section was added later, and no one thought to update the summary section.

Here's another example. The "PDA Investigative Tips" section advises the would-be investigator to leave the device in the "off" state, then immediately "switch on the device". Apparently, switching the device on leaves it in the off state. The book is full of nonsense like this.

The final straw for me, though, is the beginning of Chapter 13, which purports to examine forensic tools (hardware and software). The author of this chapter openly states that the chapter is "heavily based on the assertions of the vendors who make the products." In other words, they just slapped together a bunch of sales literature, and are not providing any real-world experience with, or observations of, the products. Well, at least they're honest about their laziness and lack of experience.

I have worked in the IT field for over 25 years now, and I have read many, many technical and instructional books. This is definitely one of the worst. Buy something else if you want to learn about forensics. I recommend "File System Forensic Analysis", by Brian Carrier.
Was this review helpful to you?
5 of 5 people found the following review helpful
5.0 out of 5 stars Exactly what i wanted April 18, 2008
Im currently enrolled to go to school for computer forencsics, however i dont start until september i wanted a book to jumpstart me in the field before i start classes to get familiar with the subject. I wanted a study guide to teach me the basics and i couldnt have gotten a better book. The Official CHFI study guide is exactly what i wanted and needed and now im more excited then ever to start classes in the fall. Very satisfied with my purchase.
Comment | 
Was this review helpful to you?
3 of 3 people found the following review helpful
5.0 out of 5 stars CHFI is the CEH exam for the forensic examiner April 3, 2008
By Robert
I found this book to be very complete, the CHFI exam still seems to be in its preliminary stages however this exam along with the Certified Computer Examiner (CCE) Certification seem to be the only non-software dependent certifications. This book once purchased can also be downloaded as a pdf from the website. Cover all tools including encase, sleuthkit, paraben's network email examiner, etc.
Comment | 
Was this review helpful to you?
1 of 1 people found the following review helpful
2.0 out of 5 stars CHFI Exam 312-49 (the official CHFI Study Guide) March 4, 2012
By James
Format:Kindle Edition|Verified Purchase
Short, quick, and to the point. This study guide is not what I'd expected. A study guide presents basic/core items and briefly expands on them short explanations. This is an exhaustive guide. I was hoping for a stripped down product, with tests, perfect for those last few days of preparation prior to an exam.
Comment | 
Was this review helpful to you?
1 of 1 people found the following review helpful
5.0 out of 5 stars Very Good March 29, 2009
I like the book it is very good and I would recomend anyone to it. I am not really doing the 312-49 Exam, but I'm doing a online Computer Forensic COurse and this study guide really helpn me out and I get to learn more also.
Comment | 
Was this review helpful to you?
5.0 out of 5 stars Passed on my first try April 7, 2014
Format:Paperback|Verified Purchase
This book is outdated, however enough to pass on 312-49 exam on my first try with score above 96%. Great book!
Comment | 
Was this review helpful to you?
5.0 out of 5 stars Book is HUGE December 30, 2013
Format:Paperback|Verified Purchase
I didn't expect the book to be as big as it was but it is giant. Very informative and has a lot of information in it. Worth the money.
Comment | 
Was this review helpful to you?
Most Recent Customer Reviews
5.0 out of 5 stars Best CHFI book
Very detailed book. It is loaded with lots of practical examples and sites from which software could be obtained for practice. Read more
Published 4 months ago by J A OYELEKE
4.0 out of 5 stars NYguy
I'm not sure why people are giving this such a low review. There are a few mistakes, and a few pieces of information that's outdated. Read more
Published 24 months ago by Crypto
4.0 out of 5 stars Easy to Read.
This is a great training manual, someone with a rudimentary understanding of computers will be able to follow along due to the easy to read format and lay person language. Read more
Published on December 21, 2011 by N. A. Cadwallader
1.0 out of 5 stars At least on unforgiveable, *horrific* technical mistake
Full disclosure: I haven't finished the book. In fact, I haven't finished the first chapter. But the error on page ten makes me cringe, and want to ask for my money back from... Read more
Published on July 17, 2011 by Nekton
3.0 out of 5 stars NOT updated for the latest version (v4)
My experience with the official CHFI courseware straight from EC-Council was a disaster, to say the least. Read more
Published on February 23, 2011 by Kate
5.0 out of 5 stars study guide for exam 312-49
a weighty tomb that provides a lot of information for persons that wish to study for their forensic investigators certification
Published on July 20, 2010 by Samuel A. Thomas III
5.0 out of 5 stars Passed The Exam with This Book
This Book is an Excellent resource and Study Guide for CHFI v3 Exam ..
i will Recommended this Book and Hacking Exposed Computer Forensic v2 , for Passing the CHFI v3... Read more
Published on September 28, 2009 by Abdullah Y. A. Ahmed
Search Customer Reviews
Only search this product's reviews

What Other Items Do Customers Buy After Viewing This Item?


There are no discussions about this product yet.
Be the first to discuss this product with the community.
Start a new discussion
First post:
Prompts for sign-in

Look for Similar Items by Category