由Foundstone公司的两位作者Kevin Mandia和Chris Prosise写的这本书现在出了第二版,第一版国内有翻译,从中学到了不少。目前没法看到这本书,先看这本书相关的网站提供的链接和工具吧,可惜提供的内容太少。希望他们能象Linxu Exposed一样,不断更新。第二版更新的内容包括:
* New real-world scenarios throughout the book
* Latest methods for collecting live data and investigating Windows and UNIX systems
* Updated information on forensic duplication
* New chapter on emergency network security monitoring
* New chapter on corporate evidence handling procedures
* New chapter on data preparation with details on hard drive interfaces and data storage principles
* New chapter on data extraction and analysis
* Latest techniques for analyzing network traffic
* Up-to-date methods for investigating and assessing hacker tools, and more.
Comments (2)
可以考虑咱们来翻译第二版吧
Posted by 刀巴 | August 5, 2003 8:25 AM
Posted on August 5, 2003 08:25
可以考虑,第一版是常晓波翻译的,清华大学出版社出版。用Google搜索了一下,他翻译的书真还不少。
Posted by Dave Land | August 5, 2003 8:34 PM
Posted on August 5, 2003 20:34