Covers the field of 'live forensics', where investigators examine a computer system to collect and preserve critical live data that may be lost if the system is shut down. This book emphasizes a live forensics and evidence collection methodology on both Windows and Linux operating systems in the context of identifying and capturing malicious code.
Almost weekly, top information security web sites, periodicals, mailing lists, and antivirus intelligence bulletins warn of new malicious code variants wreaking havoc on computer networks across the world - whether in the form of bots, viruses, worms, Trojan Horses, phishing sites, or malicious code embedded web sites. Malware is the most burgeoning and difficult scourge confronting information security professionals around the world. To combat the growing threat of malicious code attacks, information security and information assurance professionals need a complete, up-to-date instructional handbook that addresses the very practical aspects of live incident response forensics and malicious code analysis. Malware Forensics: Investigating and Analyzing Malicious Code covers the emerging and evolving field of "live forensics," where investigators examine a computer system to collect and preserve critical live data that may be lost if the system is shut down. Unlike other forensic text