Synopses & Reviews
This is the official CHFI study guide for professionals studying for the forensics exams and for professionals needing the skills to identify an intruder's footprints and to properly gather the necessary evidence to prosecute.
The EC-Council offers certification for ethical hacking and computer forensics. Their ethical hacker exam has become very popular as an industry gauge and we expect the forensics exam to follow suit.
The material is presented in a logical learning sequence: a section builds upon previous sections and a chapter on previous chapters. All concepts, simple and complex, are defined and explained when they appear for the first time. This book includes the following special chapter elements: Exam objectives covered in a chapter are clearly explained in the beginning of the chapter, Notes and Alerts highlight the crucial points, Exams Eye View section at the end of each chapter emphasizes the important points from the exams perspective, Key Terms present the definitions of key terms used in the chapter, Review Questions section at the end of each chapter that contains the questions modeled after the real exam questions based on the material covered in the chapter. The answers to these questions are presented with explanations in an appendix. Also included is a full practice exam modeled after the real exam. The answers to the exam questions are presented with full explanations.
* The only study guide for CHFI, provides 100% coverage of all exam objectives.
* Full web-based practice exam with explanations of correct and incorrect answers
* Forensics xxxxx
Synopsis
This is the only official, EC-Council-endorsed CHFI (Computer Hacking Forensics Investigator) study guide. It was written for security professionals, systems administrators, IT consultants, legal professionals, IT managers, police and law enforcement personnel studying for the CHFI certification, and professionals needing the skills to identify an intruder's footprints and properly gather the necessary evidence to prosecute. Key features include:
• The Only Official Study Guide for CHFI
Provides 100% coverage of all exam objectives.
• Full Web-based Exam
Modeled after the real exam, it also includes explanations of correct and incorrect answers.
• Exam Objectives
Each is clearly explained at the beginning of the chapter.
• Notes and Alerts
Highlight crucial points of the exam modules.
• Exam Objectives Fast Track
Bulleted highlights emphasize the important points from the exam’s perspective at the end of the chapter.
• Key Terms
All concepts are defined and explained as they appear.
• Exam Objectives Frequently Asked Questions
Test what you have learned by reading FAQs based on the material covered in the chapter. Log on to the Syngress Web site to access review questions based on the exam.
About the Author
(ISFCE), Information Systems Audit and Control Association(ISACA), High Technology Crime Investigation Association (HTCIA), Network and Systems Professionals Association (NaSPA), Association of Certified Fraud Examiners (ACFE), Anti Terrorism Accreditation Board (ATAB), and ASIS International. He is also a Secure Member and Sector Chief for Information Technology at The FBIs InfraGardand a Member and Director of Education at the International Information Systems Forensics Association (IISFA).
Table of Contents
Computer Forensics in Today’s World
Law And Computer Forensics
Computer Investigation Process
Computer Security Incident Response Team
Computer Forensic Laboratory Requirements
Understanding File systems and Hard disks
Windows Forensics
Linux and Macintosh Boot processes
Linux Forensics
Data Acquisition and Duplication
Recovering Deleted Files
Image Files Forensics
Steganography
Computer Forensic Tools
Application password crackers
Investigating Logs
Investigating network traffic
Router Forensics
Investigating Web Attacks
Tracking E-mails and Investigating E-mail crimes
Mobile and PDA Forensics
Investigating Trademark and Copyright Infringement
Investigative Reports
Becoming an Expert Witness
Forensics in action