The definitive guide to incident response--updated for the first time in a decade! Thoroughly revised to cover the latest and most effective tools and techniques, Incident Response a Computer Forensics, Third Edition arms you with the information you need to get your organization out of trouble when data breaches occur. This practical resource covers the entire lifecycle of incident response, including preparation, data collection, data analysis, and remediation. Real-world case studies reveal the methods behind--and remediation strategies for--today's most insidious attacks. Architect an infrastructure that allows for methodical investigation and remediation Develop leads, identify indicators of compromise, and determine incident scope Collect and preserve live data Perform forensic duplication Analyze data from networks, enterprise services, and applications Investigate Windows and Mac OS X systems Perform malware triage Write detailed incident response reports Create and implement comprehensive remediation plansDuring the course of an investigation, we find that it is common to come across software, hardware, or operating systems that the organization did not previously know about. ... Operating systems (Windows, Mac OS X, Linux, HP-UX) ac Hardware (laptops, desktops, servers, mobile devices) ... Mass credential change (for example, password reset) is often a particularly difficult task for many organizations.
|Title||:||Incident Response & Computer Forensics, Third Edition|
|Author||:||Jason Luttgens, Matthew Pepe, Kevin Mandia|
|Publisher||:||McGraw Hill Professional - 2014-08-01|