It also introduces the reader to Registry analysis using tools that Harlan wrote- RegRipper and Rip/RipXP.
In short - if you have the first edition then keep your well worn copy for reference and buy this second edition.
This is a book that anyone in the Incident Response or Computer Forensic arena HAS to have on their bookshelf.
Great resource. Go back to this every once in a while to look things up.Published 2 days ago by Jason
This book was a gift for my computer "guru" son, who requested it as a birthday present. I have no clue what it's all about, but he is definitely pleased with it.Published on February 21, 2012 by grammie
I had read WFA 2/e a while back and just kept forgetting to post a review.
One caveat though.... Read more
It's very hard say other word about this book than... excepcional. The reading it's very nice because the author knows what are explaining, gives very good (and real) examples... Read morePublished on September 5, 2011 by Alexandre Borges
I'm extremely impressed with how thoroughly the author covers the methods discussed in this book. Usually when I pick up a book like this I'm prepared for more questions than when... Read morePublished on September 7, 2010 by Allen W.
I saw this book at Barnes and Noble and picked it up and started to scan it, To my Demised it caught my curiosity. The more I read the more I could relate! This book is top rated! Read morePublished on May 7, 2010 by Amazon Customer
I've started reading or read a number of forensic books in the past two years. Though I have yet to read a specific Operating System forensic book, most have generally focused on... Read morePublished on September 1, 2009 by Jesse G. Lands
Harlan Carvey is one of the most prolific writers on compute forensics. He has a spare writing style that conveys information directly, without excursions. Read morePublished on August 29, 2009 by Jerry Saperstein
As practicing investigators, we have seen the tide shift over the last few years - from a concentration on traditional disk acquisition and file analysis to a multifaceted practice... Read morePublished on August 24, 2009 by Colin C. Sheppard