Windows Registry Forensics, 1st Edition,Harlan Carvey,ISBN9781597495806

248 Pages / 235 X 191



Add to Wish List
 

Windows Registry Forensics, 1st Edition

Advanced Digital Forensic Analysis of the Windows Registry

Print Book

Author : H  Carvey   

Published: 24 Jan 2011

Imprint: Syngress

ISBN: 9781597495806

Find and analyze evidence within a Windows computer registry with tips and techniques from Harlan Carvey!

Buy print & eBook together
and save 40%

USD 69.95
Print Book

+

USD 69.95
eBook

USD 139.90 Normal price

USD 83.94 Bundle price

Add to Cart
Select format

Print Book

Paperback

USD 69.95
USD 48.96

In Stock

 

Key Features

  • Packed with real-world examples using freely available open source tools
  • Deep explanation and understanding of the Windows Registry - the most difficult part of Windows to analyze forensically
  • Includes a CD containing code and author-created tools discussed in the book

Description

Harlan Carvey brings readers an advanced book on Windows Registry. The first book of its kind EVER -- Windows Registry Forensics provides the background of the Registry to help develop an understanding of the binary structure of Registry hive files. Approaches to live response and analysis are included, and tools and techniques for postmortem analysis are discussed at length. Tools and techniques will be presented that take the analyst beyond the current use of viewers and into real analysis of data contained in the Registry.

Harlan Carvey

Harlan Carvey (CISSP) is a Vice President of Advanced Security Projects with Terremark Worldwide, Inc. Terremark is a leading global provider of IT infrastructure and “cloud computing” services, based in Miami, FL. Harlan is a key contributor to the Engagement Services practice, providing disk forensics analysis, consulting, and training services to both internal and external customers. Harlan has provided forensic analysis services for the hospitality industry, financial institutions, as well as federal government and law enforcement agencies. Harlan’s primary areas of interest include research and development of novel analysis solutions, with a focus on Windows platforms. Harlan holds a bachelor’s degree in electrical engineering from the Virginia Military Institute and a master’s degree in the same discipline from the Naval Postgraduate School. Harlan resides in Northern Virginia with his family.

Affiliations and Expertise

(CISSP) Vice President of Advanced Security Projects with Terremark Worldwide, Inc., which is headquartered in Miami, FL. Harlan has provided forensic analysis services for the hospitality industry, financial institutions, as well as federal government and law enforcement agencies. Harlan resides in Northern Virginia with his family.

View additional works by Harlan Carvey

Windows Registry Forensics, 1st Edition

Chapter 1 Registry Analysis

Introduction

What is "Registry Analysis"?

What is the Windows Registry?

Registry Structure

Summary

Frequently Asked Questions

References

Chapter 2 Tools

Introduction

Live Analysis

Summary

Frequently Asked Questions

References

Chapter 3 Case Studies: The System

Introduction

Security and SAM hives

System Hive

Software Hive

BCD Hive

Summary

Frequently Asked Questions

References

Chapter 4 Case Studies: Tracking User Activity

Introduction

Tracking User Activity

Scenarios

Summary

References

 

 

Home » Life Sciences » Forensics » Computer Forensics » Windows Registry Forensics
 
 

About Elsevier

Support

Related sites

Stay Connected

Copyright © 2012 Elsevier B.V. All rights reserved. | Privacy Policy | Terms and Conditions | A Reed Elsevier Company
Elsevier Store