[转帖]"Windows Registry Forensics: Advanced Digital Forensic Analysis of the Windows Re-安全工具-看雪-安全社区|安全招聘|kanxue.com

[转帖]"Windows Registry Forensics: Advanced Digital Forensic Analysis of the Windows Re

发表于: 2011-7-22 10:11 1473

[转帖]"Windows Registry Forensics: Advanced Digital Forensic Analysis of the Windows Re

linhanshi

2011-7-22 10:11

1473

"Windows Registry Forensics: Advanced Digital Forensic Analysis of the Windows Registry" by Harlan A. Carvey

"Windows Registry Forensics: Advanced Digital Forensic Analysis of the Windows Registry" by Harlan A. Carvey
Sуngrеss, Еlsеviеr Inc. | 2011 | ISBN: 1597495808 9781597495806 | 225 pages | PDF/djvu | 4/5 MB

This book provides the background of the Registry to developing an understanding of the binary structure of Registry hive files. Approaches to live response and analysis are included and tools and techniques for post-mortem analysis are discussed at length.

Tools and techniques will be presented that take the analyst beyond the current use of viewers and into real analysis of data contained in the Registry, and demonstrate the forensic value of the Registry.
-Packed with real-world examples using freely available tools
-Deep explanation and understanding of the Windows Registry
-Includes a CD containing code and author-created tools discussed in the book

Contents
Preface
Acknowledgments
About the Author
Chapter 1 Registry Analysis
Introduction
What Is “Registry Analysis”?
What Is the Windows Registry?
Registry Structure
Summary
Frequently Asked Questions
References
Chapter 2 Tools
Introduction
Live Analysis
Summary
Frequently Asked Questions
References
Chapter 3 Case Studies: The System
Introduction
Security and SAM Hives
System Hive
Software Hive
BCD Hive
Summary
Frequently Asked Questions
References
Chapter 4 Case Studies: Tracking User Activity
Introduction
Tracking User Activity
Scenarios
Summary
References
Index

http://www.megaupload.com/?d=BGDE1XUD
http://www.filesonic.com/file/1493339861/WinRegistryForensicsAdvanced.pdf

http://www.megaupload.com/?d=4KBGV734
http://www.filesonic.com/file/1493489324/WinRegistryForensicsAdvanced.djvu

Welcome forum.forum is a home.

Please respect the copyright from the Internet.
Пожалуйста, уважайте авторское право в Интернете.
來源于互聯網, 請尊重版權.
所發資源全部來自對互聯網公共資源的收集和整理,僅供學習之用,請于下載后24小時自行刪除!
Issued by all the resources of public resources from the Internet to collect and collate, study purposes only,
please delete themselves 24 hours after downloading!
Выпущено всеми ресурсами государственных ресурсов из Интернет
а на сбор и обобщение, изучение целей, пожалуйста, удалите себя
24 часов после скачивания!
You can Google.

Программное обеспечение выпуска и Windows Crack Обучение
Нам-Dabei Guanyin Бодхисаттва Нам без митабха

[注意]传递专业知识、拓宽行业人脉——看雪讲师团队等你加入！

上传的附件：

1.jpeg （9.90kb，18次下载）

收藏・0

免费・1

支持