Perl Scripting for Windows Security and over one million other books are available for Amazon Kindle. Learn more

Perl Scripting for Windows Security: Live Response, Forensic Analysis, and Monitoring 1st Edition

2 customer reviews
ISBN-13: 978-1597491730
ISBN-10: 159749173X
Why is ISBN important?
ISBN
This bar-code number lets you verify that you're getting exactly the right version or edition of a book. The 13-digit and 10-digit formats both work.
Scan an ISBN with your phone
Use the Amazon App to scan ISBNs and compare prices.
Sell yours for a Gift Card
We'll buy it for $2.00
Learn More
Trade in now
Have one to sell? Sell on Amazon
Buy used
$25.91
Buy new
$50.73
Amazon Price New from Used from
Kindle
"Please retry"
Paperback, December 12, 2007
"Please retry"
$50.73
$42.26 $25.91
More Buying Choices
12 New from $42.26 14 Used from $25.91
Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student


InterDesign Brand Store Awareness Textbooks
$50.73 FREE Shipping. In Stock. Ships from and sold by Amazon.com. Gift-wrap available.

Frequently Bought Together

Perl Scripting for Windows Security: Live Response, Forensic Analysis, and Monitoring + Perl Programming for the Absolute Beginner
Price for both: $68.95

Buy the selected items together

Editorial Reviews

About the Author

Harlan Carvey (CISSP) is a Vice President of Advanced Security Projects with Terremark Worldwide, Inc. Terremark is a leading global provider of IT infrastructure and “cloud computing” services, based in Miami, FL. Harlan is a key contributor to the Engagement Services practice, providing disk forensics analysis, consulting, and training services to both internal and external customers. Harlan has provided forensic analysis services for the hospitality industry, financial institutions, as well as federal government and law enforcement agencies. Harlan’s primary areas of interest include research and development of novel analysis solutions, with a focus on Windows platforms.
Harlan holds a bachelor’s degree in electrical engineering from the Virginia Military Institute and a master’s degree in the same discipline from the Naval Postgraduate School. Harlan resides in Northern Virginia with his family.
NO_CONTENT_IN_FEATURE


Shop the New Digital Design Bookstore
Check out the Digital Design Bookstore, a new hub for photographers, art directors, illustrators, web developers, and other creative individuals to find highly rated and highly relevant career resources. Shop books on web development and graphic design, or check out blog posts by authors and thought-leaders in the design industry. Shop now

Product Details

  • Paperback: 232 pages
  • Publisher: Elsevier Inc.; 1 edition (December 26, 2007)
  • Language: English
  • ISBN-10: 159749173X
  • ISBN-13: 978-1597491730
  • Product Dimensions: 7.5 x 0.5 x 9.2 inches
  • Shipping Weight: 1 pounds (View shipping rates and policies)
  • Average Customer Review: 5.0 out of 5 stars  See all reviews (2 customer reviews)
  • Amazon Best Sellers Rank: #1,761,242 in Books (See Top 100 in Books)

More About the Authors

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

5 star
100%
4 star
0%
3 star
0%
2 star
0%
1 star
0%
See both customer reviews
Share your thoughts with other customers

Most Helpful Customer Reviews

Format: Paperback Verified Purchase
This a highly specialized book that will not find a wide audience. The author states the narrow purpose of his work: "[t]he purpose of this book is to show what can be (and has been) done, using Perl, to perform incident response, computer forensic analysis, and application monitoring on Windows system".

At least an elementary understanding of Perl (or a related scripting language, such as Python) is required to make full use of the book.

Carvey covers some live response subjects and some registry and log analysis situations.

As Carvey points out, this book will not teach you how to perform live incident response or computer forensics.

Its value is as a tool to teach you how to use Perl as a tool in your work.

The book, as you might expect, is loaded with examples that will teach you much about Windows and using Perl to extract information. For instance, one script entitled "Lslink.pl" has much to teach about the structure of Windows shortcut or link files (which are encoded in binary) and how to extract that structure using a Perl script. The script runs about se ven printed pages. It is not overly complex, but following its logic is very informative.

By the way, one of the first things the author does is to brief the reader on the capabilities of several commonly available Perl modules, which can be extremely handy.

Harlan Carvey is very well known in the community for his writings on the Windows Registry and his Perl script RegRipper. Carvey not only demonstrates his masterly understanding of the Registry, but provides several scripts for the student reader to review and implement.
Read more ›
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
2 of 3 people found the following review helpful By Larry E. Daniel on June 7, 2009
Format: Paperback
Syngress was kind enough to give me a copy of Harlan Carvey's book, "Perl Scripting for Windows Security" while I was visiting the Syngress booth at Techno-Security this week. After reading the book, I have to say that I was really pleased with the content.

This is not a Perl tutorial. However, if you happen to be using any of Harlan's tools that he has written in Perl to perform live response, post-mortem forensics or network security administration, the book gives good insight into exactly what the scripts are doing and why.
While I am not a Perl programmer, I have over 25 years of experience programming in various computer languages. Based on what I saw in the book, anyone with fairly basic programming knowledge can understand what Harlan is doing with the scripts and if they want to learn Perl, could use them as an excellent method for advancing their knowledge into writing specific scripts later on.

For someone who is an experienced programmer who wants to dive into Perl scripting, once you have gained an understanding of the Perl syntax and coding rules, Harlan's scripts and advice in the book for additional resources are an excellent way to get deeper into coding Perl for specific security tasks.

The foundation of programming is basically the same, no matter what language you choose to use. What differs between the different languages is primarily features and syntax. In other words, how you have to structure your coding for the interpreter or compiler to understand what you are trying to do.
The book is organized into three parts, with Part 1 covering how to use Perl for incident response and troubleshooting live systems. Part 2 covers post-mortem forensics and Part 3 covers monitoring application processes, Web services and log files.
Read more ›
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again

Set up an Amazon Giveaway

Amazon Giveaway allows you to run promotional giveaways in order to create buzz, reward your audience, and attract new followers and customers. Learn more
Perl Scripting for Windows Security: Live Response, Forensic Analysis, and Monitoring
This item: Perl Scripting for Windows Security: Live Response, Forensic Analysis, and Monitoring
Price: $50.73
Ships from and sold by Amazon.com
Want to discover more products? Check out this page to see more: operating systems