Network forensics : tracking hackers through cyberspace

Book

Network forensics : tracking hackers through cyberspace / Sherri Davidoff, Jonathan Ham.

Davidoff, Sherri. (Author). Ham, Jonathan. (Added Author).

Summary:

"Learn to recognize hackers’ tracks and uncover network-based evidence in Network Forensics: Tracking Hackers through Cyberspace.Carve suspicious email attachments from packet captures. Use flow records to track an intruder as he pivots through the network. Analyze a real-world wireless encryption-cracking attack (and then crack the key yourself). Reconstruct a suspect’s web surfing history–and cached web pages, too–from a web proxy. Uncover DNS-tunneled traffic. Dissect the Operation Aurora exploit, caught on the wire. Throughout the text, step-by-step case studies guide you through the analysis of network-based evidence. You can download the evidence files from the authors’ web site (lmgsecurity.com), and follow along to gain hands-on experience."--From Publisher.

Record details

ISBN: 0132564718
ISBN: 9780132564717
Physical Description: xxvii, 545 pages : illustrations ; 24 cm
Publisher: Upper Saddle River, NJ : Prentice Hall, ©2012.

Content descriptions

Bibliography, etc. Note:: Includes bibliographical references and index.
Formatted Contents Note:: Part I: Foundation -- Practical investigative strategies -- Technical fundamentals -- Evidence acquisition -- Part II: Traffic analysis -- Packet analysis -- Statistical flow analysis -- Wireless : network forensics unplugged -- Network intrusion detection and analysis -- Part III: Network devices and servers -- Event log aggregation, correlation, and analysis -- Web proxies -- Part IV: Advanced topics -- Network tunneling -- Malware forensics.