Windows Registry Forensics : Advanced Digital Forensic Analysis of the Windows Registry

By: Carvey, HarlanMaterial type: TextTextSeries: eBooks on DemandPublisher: Saint Louis : Elsevier Science, 2014Description: 1 online resource (225 p.)ISBN: 9781597495813Subject(s): Component software | Component software | Computer crimes - Investigation - Methodology | Computer crimes --Investigation --Methodology | Computer networks - Security measures | Computer networks --Security measures | Computer security | Computer securityGenre/Form: Electronic books.Additional physical formats: Print version:: Windows Registry Forensics : Advanced Digital Forensic Analysis of the Windows RegistryDDC classification: 363.2562 LOC classification: HV8079.C65C373 2011Online resources: Click here to view this ebook.
Contents:
Front Cover; Disclaimer; Windows Registry Forensics; Copyright page; Dedication; Table of Contents; Preface; Acknowledgments; About the Author; Chapter 1. Registry Analysis; Introduction; What Is "Registry Analysis"?; What Is the Windows Registry?; Registry Structure; Summary; Frequently Asked Questions; References; Chapter 2. Tools; Introduction; Live Analysis; Summary; Frequently Asked Questions; References; Chapter 3. Case Studies: The System; Introduction; Security and SAM Hives; System Hive; Software Hive; BCD Hive; Summary; Frequently Asked Questions; References
Chapter 4. Case Studies: Tracking User ActivityIntroduction; Tracking User Activity; Scenarios; Summary; References; Index
Summary: Harlan Carvey brings readers an advanced book on Windows Registry. The first book of its kind EVER -- <i>Windows Registry Forensics</i> provides the background of the Registry to help develop an understanding of the binary structure of Registry hive files. Approaches to live response and analysis are included, and tools and techniques for postmortem analysis are discussed at length. Tools and techniques will be presented that take the analyst beyond the current use of viewers and into real analysis of data contained in the Registry.<br><br><ul><br><ul> </ul><li>Named a 2011 Best Digital Forens
Tags from this library: No tags from this library for this title. Log in to add tags.
Item type Current location Call number URL Status Date due Barcode
Electronic Book UT Tyler Online
Online
HV8079.C65C373 2011 (Browse shelf) http://uttyler.eblib.com/patron/FullRecord.aspx?p=635382 Available EBL635382

Front Cover; Disclaimer; Windows Registry Forensics; Copyright page; Dedication; Table of Contents; Preface; Acknowledgments; About the Author; Chapter 1. Registry Analysis; Introduction; What Is "Registry Analysis"?; What Is the Windows Registry?; Registry Structure; Summary; Frequently Asked Questions; References; Chapter 2. Tools; Introduction; Live Analysis; Summary; Frequently Asked Questions; References; Chapter 3. Case Studies: The System; Introduction; Security and SAM Hives; System Hive; Software Hive; BCD Hive; Summary; Frequently Asked Questions; References

Chapter 4. Case Studies: Tracking User ActivityIntroduction; Tracking User Activity; Scenarios; Summary; References; Index

Harlan Carvey brings readers an advanced book on Windows Registry. The first book of its kind EVER -- <i>Windows Registry Forensics</i> provides the background of the Registry to help develop an understanding of the binary structure of Registry hive files. Approaches to live response and analysis are included, and tools and techniques for postmortem analysis are discussed at length. Tools and techniques will be presented that take the analyst beyond the current use of viewers and into real analysis of data contained in the Registry.<br><br><ul><br><ul> </ul><li>Named a 2011 Best Digital Forens

Description based upon print version of record.

Author notes provided by Syndetics

Harlan Carvey (CISSP) is a Vice President of Advanced Security Projects with Terremark Worldwide, Inc. Terremark is a leading global provider of IT infrastructure and "cloud computing" services, based in Miami, FL. Harlan is a key contributor to the Engagement Services practice, providing disk forensics analysis, consulting, and training services to both internal and external customers. Harlan has provided forensic analysis services for the hospitality industry, financial institutions, as well as federal government and law enforcement agencies. Harlan's primary areas of interest include research and development of novel analysis solutions, with a focus on Windows platforms.
Harlan holds a bachelor's degree in electrical engineering from the Virginia Military Institute and a master's degree in the same discipline from the Naval Postgraduate School. Harlan resides in Northern Virginia with his family.

There are no comments on this title.

to post a comment.