Buy this book with File System Forensic Analysis by Brian Carrier today!

Buy Together Today: $69.28

Real Digital Forensics: Computer Security and Incident Response by Keith J. Jones  (7)  $37.79

Digital Evidence and Computer Crime, Second Edition by Eoghan Casey  (11)  $55.96

Malware: Fighting Malicious Code (The Radia Perlman Series in Computer Networking and Security) by Ed Skoudis  (15)  $38.00

Computer Forensics: Incident Response Essentials by Warren G. Kruse  (22)  $34.64

Hacking Exposed by Joel Scambray  (87)

› Explore similar items : Books (49)

Amazon.com
A strong system of defenses will save your systems from falling victim to published and otherwise uninventive attacks, but even the most heavily defended system can be cracked under the right conditions. Incident Response aims to teach you how to determine when an attack has occurred or is underway--they're often hard to spot--and show you what to do about it. Authors Kevin Mandia and Chris Prosise favor a tools- and procedures-centric approach to the subject, thereby distinguishing this book from others that catalog particular attacks and methods for dealing with each one. The approach is more generic, and therefore better suited to dealing with newly emerging attack techniques.

Anti-attack procedures are presented with the goal of identifying, apprehending, and successfully prosecuting attackers. The advice on carefully preserving volatile information, such as the list of processes active at the time of an attack, is easy to follow. The book is quick to endorse tools, the functionalities of which are described so as to inspire creative applications. Information on bad-guy behavior is top quality as well, giving readers knowledge of how to interpret logs and other observed phenomena. Mandia and Prosise don't--and can't--offer a foolproof guide to catching crackers in the act, but they do offer a great "best practices" guide to active surveillance. --David Wall

Topics covered: Monitoring computer systems for evidence of malicious activity, and reacting to such activity when it's detected. With coverage of Windows and Unix systems as well as non-platform-specific resources like Web services and routers, the book covers the fundamentals of incident response, processes for gathering evidence of an attack, and tools for making forensic work easier. --This text refers to an out of print or unavailable edition of this title.

Product Description
Written by FBI insiders, this updated best-seller offers a look at the legal, procedural, and technical steps of incident response and computer forensics. Including new chapters on forensic analysis and remediation, and real-world case studies, this revealing book shows how to counteract and conquer today’s hack attacks.

See all Editorial Reviews

First Sentence:
Truth is stranger than fiction. Read the first page Key Phrases - Capitalized Phrases (CAPs): (learn more)
Event Viewer, Internet Explorer, Security System Event, Security Logon, Direct Block, Entering Extended Passive Mode, Security Detailed, Tue Jun, Fourth Amendment, Fri Feb, Security Object Access, Telnet Data, Supporting Details, Unicode Exploit, Red Hat Linux, Windows Registry, Executive Summary, Monthly Evidence Custodian Audit, Open Data Duplicator, Resource Kit, Wed Apr, Control Panel, File Scavenger, Mark Russinovich, San Francisco New!
Concordance | Text Stats Browse Sample Pages:
Front Cover | Copyright | Table of Contents | Excerpt | Index | Back Cover | Surprise Me!

Search Inside This Book: