X-Ways Forensics practitioner's guide
The X-Ways Forensics Practitioner's Guide is more than a manual-it's a complete reference guide to the full use of one of the most powerful forensic applications available, software that is used by a wide array of law enforcement agencies and private forensic examiners on a daily basis....
| Autor principal: | |
|---|---|
| Otros Autores: | , |
| Formato: | Libro electrónico |
| Idioma: | Inglés |
| Publicado: |
Waltham, MA :
Syngress
2014.
|
| Edición: | 1st edition |
| Colección: | Gale eBooks
|
| Materias: | |
| Ver en Biblioteca Universitat Ramon Llull: | https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009627857006719 |
Tabla de Contenidos:
- Front Cover; X-Ways Forensics Practitioner's Guide; Copyright; Contents; Acknowledgments; About the Authors; Foreword; Introduction; Introduction; Intended audience; Brief history of X-Ways Forensics; Comparisons to ``other ́ ́ forensic suites; Organization of this book; Chapter 1: Installation and configuration of X-Ways Forensics; Chapter 2: Case management and imaging; Chapter 3: Navigating the X-Ways Forensics interface; Chapter 4: Refine volume Snapshot; Chapter 5: The XWF internal hash database and registry viewer; Chapter 6: Searching in X-Ways Forensics; Chapter 7: Advanced use of XWF
- Chapter 8: X-Ways Forensics reportingChapter 9: X-Ways Forensics and electronic discovery; Chapter 10: Consent to search and supervision of paroles; Summary; Chapter 1: Installation and Configuration of X-Ways Forensics; Introduction; System requirements; Installing XWF; Alternative install methods; The XWF dongle; Upgrading your dongle; The XWF user interface; Configuring XWF; Summary; Reference; Chapter 2: Case Management and Imaging; Introduction; Creating a case file; Creating a new case; General case information section; Audit trail and activity logging section; Code pages section
- Other options sectionCreating/Adding evidence files; Creating Forensic images with XWF; Live response using XWF; Using XWF to review medium while imaging; Reverse imaging; Skeleton imaging; Cleansed imaging; CD/DVD; Physical memory imaging; Container files; Working with RAID arrays; Augmenting with F-Response; Shortcuts; Summary; Chapter 3: Navigating the X-Ways Forensics Interface; Introduction; Case Data directory tree; Right click behaviors; Middle-click behaviors; Toolbar, tab control, and Directory Browser Options, Filters; General Options; Item listing options
- Directory Browser column and filter optionsDirectory Browser columns; Directory Browser; Column sorting; Column filtering; Directory Browser context menu; Mode buttons and Details pane; Legend mode; Volume/Partition mode; Disk mode; File mode; Preview mode; Details mode; Gallery mode; Calendar mode; Directory Browser mode; Sync mode; Explore recursively mode; Search hit list mode; Events mode; Position manager mode; Status bar; Right clicking the status bar; Left clicking the status bar; Data Interpreter; Main menu; General Options continued; Volume Snapshot options
- Viewer Programs options continuedSecurity Options; Shortcuts; Summary; Chapter 4: Refine Volume Snapshot; Introduction; Volume snapshot options; Starting RVS; Take new one and default RVS options; RVS options; File recovery options; File processing options; Extract e-mail messages and attachments from. . .; Results of an RVS; Shortcuts; Summary; Reference; Chapter 5: The XWF Internal Hash Database and the Registry Viewer; Introduction; XWF internal hash database and hash sets; Hash categories; Computing hash values; Creating hash sets; Duplicate hash values
- The registry through X-Ways Forensics
