TY  - BOOK
AU  - Carvey,Harlan A.
AU  - Casey,Eoghan
TI  - Windows forensic analysis DVD toolkit 2E
SN  - 1597494224 (pbk. )
U1  - 005.8 CAR   
PY  - 2009///
CY  - Burlington, MA
PB  - Syngress Pub.
KW  - Computer crimes
KW  - Investigation
KW  - United States
KW  - Methodology
KW  - Microsoft Windows (Computer file)
KW  - Security measures
KW  - Computer networks
KW  - Internet
KW  - Computer security
N1  - Includes bibliographical references and index; Live response : collecting volatile data -- Live response : data analysis -- Windows memory analysis -- Registry analysis -- File analysis -- Executable file analysis -- Rootkits and rootkit detection -- Tying it all together -- Performing analysis on a budget
ER  -