Malware Forensics: Investigating and Analyzing Malicious Code
- ISBN-10
- 0080560199
- ISBN-13
- 9780080560199
- Category
- Computers
- Pages
- 592
- Language
- English
- Published
- 2008-08-08
- Publisher
- Syngress
- Authors
- Cameron H. Malin, Eoghan Casey, James M. Aquilina
Description
Malware Forensics: Investigating and Analyzing Malicious Code covers the complete process of responding to a malicious code incident. Written by authors who have investigated and prosecuted federal malware cases, this book deals with the emerging and evolving field of live forensics, where investigators examine a computer system to collect and preserve critical live data that may be lost if the system is shut down. Unlike other forensic texts that discuss live forensics on a particular operating system, or in a generic context, this book emphasizes a live forensics and evidence collection methodology on both Windows and Linux operating systems in the context of identifying and capturing malicious code and evidence of its effect on the compromised system. It is the first book detailing how to perform live forensic techniques on malicious code. The book gives deep coverage on the tools and techniques of conducting runtime behavioral malware analysis (such as file, registry, network and port monitoring) and static code analysis (such as file identification and profiling, strings discovery, armoring/packing detection, disassembling, debugging), and more. It explores over 150 different tools for malware incident response and analysis, including forensic tools for preserving and analyzing computer memory. Readers from all educational and technical backgrounds will benefit from the clear and concise explanations of the applicable legal case law and statutes covered in every chapter. In addition to the technical topics discussed, this book also offers critical legal considerations addressing the legal ramifications and requirements governing the subject matter. This book is intended for system administrators, information security professionals, network personnel, forensic examiners, attorneys, and law enforcement working with the inner-workings of computer memory and malicious code. * Winner of Best Book Bejtlich read in 2008! * http://taosecurity.blogspot.com/2008/12/best-book-bejtlich-read-in-2008.html * Authors have investigated and prosecuted federal malware cases, which allows them to provide unparalleled insight to the reader. * First book to detail how to perform "live forensic" techniques on malicous code. * In addition to the technical topics discussed, this book also offers critical legal considerations addressing the legal ramifications and requirements governing the subject matter
Get the book
Similar books
-
Malware Forensics Field Guide for Windows Systems: Digital Forensics Field Guides
By Cameron H. Malin, Eoghan Casey, James M. AquilinaWritten by information security experts with real-world investigative experience, Malware Forensics Field Guide for Windows Systems is a "tool" with checklists for specific tasks, case studies of difficult situations, and expert analyst ...
-
Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software
By Michael Sikorski, Andrew HonigWith this book as your guide, you'll be able to safely analyze, debug, and disassemble any malicious software that comes your way.
-
Learning Malware Analysis: Explore the concepts, tools, and techniques to analyze and investigate Windows malware
By Monnappa K AWhat you will learn Create a safe and isolated lab environment for malware analysis Extract the metadata associated with malware Determine malware's interaction with the system Perform code analysis using IDA Pro and x64dbg Reverse-engineer ...
-
Malware Forensics Field Guide for Windows Systems: Digital Forensics Field Guides
By Cameron H. Malin, Eoghan Casey, James M. AquilinaDigital Forensics Field Guides Cameron H. Malin, Eoghan Casey, James M. Aquilina ... Bentley and Barkley—thanks for being Daddy's little “writing buddies.” Malware Forensics Field Guide for Windows Systems was reviewed by a digital ...
-
The Art of Memory Forensics: Detecting Malware and Threats in Windows, Linux, and Mac Memory
By Andrew Case, Michael Hale Ligh, Jamie Levy... [000000002f700000 - 000000002f713000] Loader Data [WRITTEN] [000000002f713000 - 000000002f800000] Conventional [WRITTEN] [000000002f800000 - 000000002fd3e000] Loader Data [WRITTEN] [000000002fd3e000 - 000000002fe00000] Conventional ...
-
Malware Forensics Field Guide for Linux Systems: Digital Forensics Field Guides
By Cameron H. Malin, Eoghan Casey, James M. AquilinaThis book collects data from all methods of electronic data storage and transfer devices, including computers, laptops, PDAs and the images, spreadsheets and other types of files stored on these devices.
-
Mastering Malware Analysis: The complete malware analyst's guide to combating malicious software, APT, cybercrime, and IoT attacks
By Alexey Kleymenov, Amr ThabetThis book will help you deal with modern cross-platform malware. Throughout the course of this book, you will explore real-world examples of static and dynamic malware analysis, unpacking and decrypting, and rootkit detection.
-
Android Malware and Analysis
By Ken Dunham, Shane Hartman, Manu QuintansThis has created an immediate need for security professionals that understand how to best approach the subject of Android malware threats and analysis.In Android Malware and Analysis, K
-
Linux Malware Incident Response: A Practitioner's Guide to Forensic Collection and Examination of Volatile Data: an Excerpt from Malware Forensic...
By Cameron H. MalinThis Practitioner's Guide is designed to help digital investigators identify malware on a Linux computer system, collect volatile (and relevant nonvolatile) system data to further investigation, and determine the impact malware makes on a ...
-
Malware Analysis Techniques: Tricks for the triage of adversarial software
By Dylan BarkerWith this book, you'll learn how to quickly triage, identify, attribute, and remediate threats using proven analysis techniques.