Advanced Search

Search

-------------------------------------

Full Text Search*

*Select Titles

Product Details

 
   HomeComputer Science Software Engineering & Programming

Malware Forensics

Syngress Title
ISBN: 978-1-59749-268-3
Add to Cart
Check Out

Malware Forensics

Investigating and Analyzing Malicious Code

By Cameron H. Malin, Eoghan Casey, BS, MA and James M. Aquilina

592 pages
Trim Size 7 1/2 X 9 1/4 in
Copyright 2008
USD 69.95, Softcover

Available: In Stock

Additional Format: ScienceDirect e-book
 
Key Features

  • Winner of Best Book Bejtlich read in 2008!
  • http://taosecurity.blogspot.com/2008/12/best-book-bejtlich-read-in-2008.html
  • Authors have investigated and prosecuted federal malware cases, which allows them to provide unparalleled insight to the reader.
  • First book to detail how to perform ''live forensic'' techniques on malicous code.
  • In addition to the technical topics discussed, this book also offers critical legal considerations addressing the legal ramifications and requirements governing the subject matter

    Description

    Malware Forensics: Investigating and Analyzing Malicious Code covers the emerging and evolving field of ";live forensics,"; where investigators examine a computer system to collect and preserve critical live data that may be lost if the system is shut down. Unlike other forensic texts that discuss ";live forensics"; on a particular operating system, or in a generic context, this book emphasizes a live forensics and evidence collection methodology on both Windows and Linux operating systems in the context of identifying and capturing malicious code and evidence of its effect on the compromised system.
    Malware Forensics: Investigating and Analyzing Malicious Code also devotes extensive coverage of the burgeoning forensic field of physical and process memory analysis on both Windows and Linux platforms. This book provides clear and concise guidance as to how to forensically capture and examine physical and process memory as a key investigative step in malicious code forensics.
    Prior to this book, competing texts have described malicious code, accounted for its evolutionary history, and in some instances, dedicated a mere chapter or two to analyzing malicious code. Conversely, Malware Forensics: Investigating and Analyzing Malicious Code emphasizes the practical ";how-to"; aspect of malicious code investigation, giving deep coverage on the tools and techniques of conducting runtime behavioral malware analysis (such as file, registry, network and port monitoring) and static code analysis (such as file identification and profiling, strings discovery, armoring/packing detection, disassembling, debugging), and more.


    Readership

    Malware Forensics: Investigating and Analyzing Malicious Code is intended for system administrators, information security professionals, network personnel, forensic examiners, attorneys, and law enforcement working with the inner-workings of computer memory and malicious code. Exploring over 150 different tools for malware incident response and analysis, including forensic tools for preserving and analyzing computer memory, this book will benefit readers familiar with both Microsoft Windows and Linux operating systems. Readers from all educational and technical backgrounds will benefit from the clear and concise explanations of the applicable legal case law and statutes covered in every chapter.

    Contents
    Author Information

    By Cameron H. Malin, Special Agent with the Federal Bureau of Investigation.; Eoghan Casey, BS, MA, Assistant Director of Computer Forensics at Stroz Friedberg LLC, Washington, DC, USA; and James M. Aquilina, Managing Director and Deputy General Counsel of Stroz Friedberg, LLC

    • Print this page