Investigating Windows Systems, Carvey, Harlan

Most available courses, training, and books approach digital forensic analysis from the perspective of dumping the pieces of the puzzle out on the table, and expecting the analyst to assemble the puzzle without a full understanding of what the final product is supposed to look like. However, what none of these sources actually do is provide a walk-through of the analysis process, with descriptions of the thought process and analysis decisions made along the way.

Investigating Windows Systems will not address topics which have been covered in other books, but will expect the reader to have some ability to discover the detailed usage of tools and to perform their own research. This volume will provide a walk-through of the analysis process, with descriptions of the thought process and the analysis decisions made along the way.

A must-have guide for those in the field of digital forensic analysis and incident response.

• Provides reader with a detailed walk-through of the analysis process, with decision points along the way, assisting the user in understanding the resulting data
• Coverage will include malware detection, user activity, and setting up a testing environment
• Written at a beginner to intermediate level, for anyone engaging in the field of digital forensic analysis and incident response