Jump to content
sherlockjeo

Digital Forensics

Recommended Posts

sherlockjeo

Hi there.

Do you guys know any good Digital Forensics books?

I'm planning on taking the DF course after I finish my eCPPT.

Share this post


Link to post
Share on other sites
_VL_

I can think of a couple of good ones to start with:

Windows Forensic Toolkit by Harlan Carvey

File System Forensic Analysis by Briar Carrier

Share this post


Link to post
Share on other sites
CannibaL
On 6/6/2018 at 2:41 PM, _VL_ said:

I can think of a couple of good ones to start with:

Windows Forensic Toolkit by Harlan Carvey

File System Forensic Analysis by Briar Carrier

Feedback you got or you read them ? They are mostly practice or just reading?

Share this post


Link to post
Share on other sites
CannibaL
On 6/17/2018 at 1:53 AM, Adam said:

The book Incident Response and Computer Forensics is pretty good. 

You mean this one below? do you read it, do you know if practice is included?

51neLh+hQYL._SX402_BO1,204,203,200_.jpg

  • Like 1

Share this post


Link to post
Share on other sites
_VL_
1 hour ago, CannibaL said:

Feedback you got or you read them ? They are mostly practice or just reading?

Reading. Lots of good tips in the Harlan's book and Brian's book is excellent at teaching theory. One thing you will quickly learn is that Forensic books are expensive. Very much academic in nature and the price reflects that.

Share this post


Link to post
Share on other sites
_VL_
1 hour ago, CannibaL said:

You mean this one below? do you read it, do you know if practice is included?

51neLh+hQYL._SX402_BO1,204,203,200_.jpg

That is a good book. I recieved it as a part of my SANS SEC508 course. I haven't fully read it yet.

Share this post


Link to post
Share on other sites
Adam
On 8/3/2018 at 4:07 PM, CannibaL said:

You mean this one below? do you read it, do you know if practice is included?

51neLh+hQYL._SX402_BO1,204,203,200_.jpg

Yeah that is the one I was referring to. As far as I can remember it doesn't include any hands on exercises, but is a good read on how to conduct an investigation, etc. I read it back when I was doing blue teaming and it helped me to get better at responding to alerts. 

Share this post


Link to post
Share on other sites
Guest
You are commenting as a guest. If you have an account, please sign in.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×