Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security CISSP-Discussion
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[CISSP-D] REVIEW: "CD and DVD Forensics", Paul Crowley

from [Rob, grandpa of Ryan, Trevor, Devon & Hannah] Network Security [Permanent Link]
Subject: [CISSP-D] REVIEW: "CD and DVD Forensics", Paul Crowley
Date: Tue, 13 Mar 2007 12:42:34 -0800 
BKCDDVDF.RVW   20070116

"CD and DVD Forensics", Paul Crowley, 2007, 1-59749-128-4,
U$49.95/C$64.95
%A   Paul Crowley sales@infinadyne.com
%C   800 Hingham Street, Rockland, MA   02370
%D   2007
%E   Dave Kleiman
%G   1-59749-128-4 978-1-59749-128-0
%I   Syngress Media, Inc.
%O   U$49.95/C$64.95 781-681-5151 fax: 781-681-3585 www.syngress.com
%O  http://www.amazon.com/exec/obidos/ASIN/1597491284/robsladesinterne
  http://www.amazon.co.uk/exec/obidos/ASIN/1597491284/robsladesinte-21
%O   http://www.amazon.ca/exec/obidos/ASIN/1597491284/robsladesin03-20
%O   Audience i- Tech 2 Writing 1 (see revfaq.htm for explanation)
%P   292 p.
%T   "CD and DVD Forensics"

Chapter one outlines the physical (and some logical) structure of the
various CD (Compact Disk) and DVD (Digital Versatile Disk) formats. 
The material is often interesting, but I wonder how helpful it would
be, for forensic examiners, in many cases.  For example, there is
discussion of dyes and the coloured cast that they give to different
types of disks, but many of those distinctives seem to depend upon a
number of factors, and there is a wide range of possibilities.  In
addition, some of the descriptions of a more technical nature are
terse, and not well explained.  Most of chapter two relates to the
different CD disk formats, with varying levels of detail, but mostly
just brief summaries.  There are also odd inclusions of miscellaneous
(and only tenuously associated) material.  Chapter three suggests that
taking a forensic binary image of a CD is easy, but sometimes
impossible.  (And that you should do a hash digest for verification,
but sometimes they won't match.)  Collecting disks for evidence is
mentioned in chapter four, which has similarly contradictory advice in
places.  Preparation for examination, in chapter five, covers a number
of diverse issues such as cleaning of disks and types of drives to
use.  (It is not mentioned, at this point, that Appendix A has
instructions on modifying a drive for use in forensic examination.)

More than a third of the book (chapters six, seven, and eight)
contains documentation for the author's CD forensic software.

Chapter nine lists a few things you should put in a forensic report. 
Less than a page of items (that have been said elsewhere in the book)
are in chapter ten.

There is an extensive glossary in the book, although many items do not
relate to CDs or DVDs.  Many of those that do relate are poorly
explained, which severely limits the helpfulness of this section.

This book is not very useful for forensics, with insufficient detail
on most topics.  It suggests areas to be concerned about, but the
potential examiner would have to go elsewhere to get the information
needed to do a good job.  However, this is an esoteric area of study,
and few other sources are available, so it may be helpful as an
initial starting point.

copyright Robert M. Slade, 2007   BKCDDVDF.RVW   20070116


======================  (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca     slade@victoria.tc.ca     rslade@computercrime.org
He wrapped himself in quotations--as a beggar would enfold
himself in the purple of Emperors.                 - Rudyard Kipling
Dictionary of Information Security  www.syngress.com/catalog/?pid=4150
http://victoria.tc.ca/techrev/rms.htm


------------------------ Yahoo! Groups Sponsor --------------------~--> 
Great things are happening at Yahoo! Groups.  See the new email design.
http://us.click.yahoo.com/lOt0.A/hOaOAA/yQLSAA/kgFolB/TM
--------------------------------------------------------------------~-> 

 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://groups.yahoo.com/group/CISSP-Discuss/

<*> Your email settings:
    Individual Email | Traditional

<*> To change settings online go to:
    http://groups.yahoo.com/group/CISSP-Discuss/join
    (Yahoo! ID required)

<*> To change settings via email:
    mailto:CISSP-Discuss-digest@yahoogroups.com 
    mailto:CISSP-Discuss-fullfeatured@yahoogroups.com

<*> To unsubscribe from this group, send an email to:
    CISSP-Discuss-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [CISSP-D] REVIEW: "CD and DVD Forensics", Paul Crowley, Rob, grandpa of Ryan, Trevor, Devon & Hannah <=
Previous by Date:  [CISSP-D] REVIEW: "FISMA Certification and Accreditation Handbook", Laura Taylor, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Next by Date:  [CISSP-D] REVIEW: "Cryptography for Developers", Tom St. Denis, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Previous by Thread:  [CISSP-D] REVIEW: "FISMA Certification and Accreditation Handbook", Laura Taylor, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Next by Thread:  [CISSP-D] REVIEW: "Cryptography for Developers", Tom St. Denis, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Indexes:  [Date] [Thread] [Top] [All Lists]