The Official CHFI Study Guide (Exam 312-49): for Computer Hacking Forensic Investigator

Front Cover
Syngress, Aug 31, 2011 - Computers - 960 pages
1 Review
This is the official CHFI (Computer Hacking Forensics Investigator) study guide for professionals studying for the forensics exams and for professionals needing the skills to identify an intruder's footprints and properly gather the necessary evidence to prosecute.

The EC-Council offers certification for ethical hacking and computer forensics. Their ethical hacker exam has become very popular as an industry gauge and we expect the forensics exam to follow suit.

Material is presented in a logical learning sequence: a section builds upon previous sections and a chapter on previous chapters. All concepts, simple and complex, are defined and explained when they appear for the first time. This book includes: Exam objectives covered in a chapter are clearly explained in the beginning of the chapter, Notes and Alerts highlight crucial points, Exam’s Eye View emphasizes the important points from the exam’s perspective, Key Terms present definitions of key terms used in the chapter, Review Questions contains the questions modeled after real exam questions based on the material covered in the chapter. Answers to the questions are presented with explanations. Also included is a full practice exam modeled after the real exam.
  • The only study guide for CHFI, provides 100% coverage of all exam objectives.
  • CHFI Training runs hundreds of dollars for self tests to thousands of dollars for classroom training.
 

What people are saying - Write a review

User Review - Flag as inappropriate

good to have such books

Contents

Chapter 1 Computer Forensics in Todays World
1
Chapter 2 Systems Disks and Media
61
Chapter 3 The Computer Investigation Process
133
Chapter 4 Acquiring Data Duplicating Data and Recovering Deleted Files
197
Chapter 5 Windows Linux and Macintosh Boot Processes
265
Chapter 6 Windows and Linux Forensics
287
Chapter 7 Steganography and Application Password Crackers
351
Chapter 8 ComputerAssisted Attacks and Crimes
387
Chapter 11 Investigating Wireless Attacks
487
Chapter 12 PDA Blackberry and iPod Forensics
511
Chapter 13 Forensic Software and Hardware
543
Chapter 14 Forensics Investigation Using EnCase
617
Chapter 15 Incident Response
675
Chapter 16 Types of Investigations
707
Appendix A Becoming an Expert Witness
813
Appendix B Worldwide Forensic Acts and Laws
861

Chapter 9 Investigating Network Traffic and Investigating Logs
441
Chapter 10 Router Forensics and Network Forensics
469

Other editions - View all

Common terms and phrases

About the author (2011)

Dave Kleiman (CAS, CCE, CIFI, CISM, CISSP, ISSAP, ISSMP, MCSE) has worked in the Information Technology Security sector since 1990. Currently, he is the owner of SecurityBreachResponse.com, and is the Chief Information Security Officer for Securit-e-Doc, Inc. Before starting this position, he was Vice President of Technical Operations at Intelliswitch, Inc., where he supervised an international telecommunications and Internet service provider network. Dave is a recognized security expert. A former Florida Certified Law Enforcement Officer, he specializes in computer forensic investigations, incident response, intrusion analysis, security audits, and secure network infrastructures. He has written several secure installation and configuration guides about Microsoft technologies that are used by network professionals. He has developed a Windows Operating System lockdown tool, S-Lok (www.s-doc.com/products/slok.asp ), which surpasses NSA, NIST, and Microsoft Common Criteria Guidelines. Dave was a contributing author to Microsoft Log Parser Toolkit (Syngress Publishing, ISBN: 1-932266-52-6). He is frequently a speaker at many national security conferences and is a regular contributor to many security-related newsletters, Web sites, and Internet forums. Dave is a member of several organizations, including the International Association of Counter Terrorism and Security Professionals (IACSP), International Society of Forensic Computer Examiners® (ISFCE), Information Systems Audit and Control Association® (ISACA), High Technology Crime Investigation Association (HTCIA), Network and Systems Professionals Association (NaSPA), Association of Certified Fraud Examiners (ACFE), Anti Terrorism Accreditation Board (ATAB), and ASIS International®. He is also a Secure Member and Sector Chief for Information Technology at The FBI’s InfraGard® and a Member and Director of Education at the International Information Systems Forensics Association (IISFA).

Bibliographic information