gogogo
Syndetics cover image
Image from Syndetics

Windows registry forensics [electronic book] : advanced digital forensic analysis of the Windows registry / Harlan Carvey.

By: Contributor(s): Material type: TextTextPublication details: Burlington, MA : Syngress, 2011.ISBN:
  • 1597495808 (pbk.)
  • 9781597495806 (pbk.)
Subject(s): Genre/Form: Online resources:
Contents:
Machine generated contents note: Chapter 1. Registry AnalysisChapter 2. ToolsChapter 3. Analysis: Registry keys and values of interest (System-wide keys/values) Chapter 4. Analysis: Registry keys and values of interest (User-specific keys/values).
No physical items for this record

Enhanced descriptions from Syndetics:

Windows Registry Forensics provides the background of the Windows Registry to help develop an understanding of the binary structure of Registry hive files. Approaches to live response and analysis are included, and tools and techniques for postmortem analysis are discussed at length. Tools and techniques are presented that take the student and analyst beyond the current use of viewers and into real analysis of data contained in the Registry, demonstrating the forensic value of the Registry.

Named a 2011 Best Digital Forensics Book by InfoSec Reviews , this book is packed with real-world examples using freely available open source tools. It also includes case studies and a CD containing code and author-created tools discussed in the book.

This book will appeal to computer forensic and incident response professionals, including federal government and commercial/private sector contractors, consultants, etc.

Includes bibliographical references.

Machine generated contents note: Chapter 1. Registry AnalysisChapter 2. ToolsChapter 3. Analysis: Registry keys and values of interest (System-wide keys/values) Chapter 4. Analysis: Registry keys and values of interest (User-specific keys/values).

Author notes provided by Syndetics

Harlan Carvey is a senior information security researcher with the Dell SecureWorks Counter Threat Unit - Special Ops (CTU-SO) team, where his efforts are focused on targeted threat hunting, response, and research. He continues to maintain a passion and focus in analyzing Windows systems, and in particular, the Windows Registry.

Harlan is an accomplished author, public speaker, and open source tool author. He dabbles in other activities, including home brewing and horseback riding. As a result, he has become quite adept at backing up and parking a horse trailer.

Harlan earned a bachelor's degree in electrical engineering from the Virginia Military Institute, and a master's degree in the same discipline from the Naval Postgraduate School. He served in the United States Marine Corps, achieving the rank of captain before departing the service. He resides in Northern Virginia with his family.

Powered by Koha