Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security CISSP-Discussion
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[CISSP-D] REVIEW: "Internet Forensics", Robert Jones

from [Rob, grandpa of Ryan, Trevor, Devon & Hannah] Network Security [Permanent Link]
Subject: [CISSP-D] REVIEW: "Internet Forensics", Robert Jones
Date: Mon, 17 Apr 2006 14:12:23 -0800 
BKINTFOR.RVW   20051209

"Internet Forensics", Robert Jones, 2006, 0-596-10006-X,
U$39.95/C$55.95
%A   Robert Jones www.craic.com
%C   103 Morris Street, Suite A, Sebastopol, CA   95472
%D   2006
%G   0-596-10006-X
%I   O'Reilly & Associates, Inc.
%O   U$39.95/C$55.95 800-998-9938 fax: 707-829-0104 nuts@ora.com
%O  http://www.amazon.com/exec/obidos/ASIN/059610006X/robsladesinterne
  http://www.amazon.co.uk/exec/obidos/ASIN/059610006X/robsladesinte-21
%O   http://www.amazon.ca/exec/obidos/ASIN/059610006X/robsladesin03-20
%O   Audience i Tech 2 Writing 1 (see revfaq.htm for explanation)
%P   223 p.
%T   "Internet Forensics"

The preface states that the intended audience for the book consists of
security professionals, as well as developers and system
administrators.  A basic familiarity with email and Web clients is
assumed, and the ability to program in Perl is recommended, although
not necessary.

Chapter one notes that there are bad things and people on the
Internet.  The domain and IP address structures, and the tools
associated with researching the information related to them, is
discussed in chapter two.  Email headers are described in chapter
three, primarily with a view to catching spammers.  Chapter four notes
various means of representing (and obfuscating) Web addresses.  The
information that can be obtained from Web pages is in chapter five,
while data that can be obtained from Web servers is in six.  Chapter
seven outlines the information that your browser gives about you, and
mentions ways to protect your privacy in that regard.  The existence
of metadata and commented material in Microsoft Word and Adobe PDF
files is presented in chapter eight, although this usually relates
more to computer forensics than the network kind.  Chapter nine
appears to deal with the checking and confirmation of personal
information.  An overview of ways to search for and create signatures
and patterns is given in chapter ten, but the purpose of the activity
is not clear.  Two case studies of network investigations are
presented in chapter eleven, one of a phishing scam, and the other of
a spambotnet.  Chapter twelve finishes off the book with a look at
various groups investigating different kinds of net crimes.

The field of network forensics is not well covered yet.  Therefore, I
may be guilty of expecting too much of an early work.  Much of the
material presented in this book is simplistic.  Still, the average
Internet user may find the content helpful in terms of tracing
spammers and checking for information about possibly hostile Web
sites.

copyright Robert M. Slade, 2005   BKINTFOR.RVW   20051209


======================  (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca      slade@victoria.tc.ca      rslade@sun.soci.niu.edu
I have received memos so swollen with managerial babble that they
struck me as the literary equivalent of assault with a deadly
weapon.                                                - Peter Baida
http://victoria.tc.ca/techrev/rms.htm


 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://groups.yahoo.com/group/CISSP-Discuss/

<*> To unsubscribe from this group, send an email to:
    CISSP-Discuss-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [CISSP-D] REVIEW: "Internet Forensics", Robert Jones, Rob, grandpa of Ryan, Trevor, Devon & Hannah <=
Previous by Date:  [CISSP-D] Best Practice Audit Guides and Compliance and IT Audit Advice, Dan Swanson
Next by Date:  [CISSP-D] Computer Forensics Textbook Recommendations, Steve
Previous by Thread:  [CISSP-D] Best Practice Audit Guides and Compliance and IT Audit Advice, Dan Swanson
Next by Thread:  [CISSP-D] Computer Forensics Textbook Recommendations, Steve
Indexes:  [Date] [Thread] [Top] [All Lists]