• Book Name: Computer Forensics Investigating Data and Image Files
• Pages: 227
• Size: 16 MB

Computer Forensics Investigating Data and Image Files

Hacking and electronic crimes sophistication has grown at an exponential rate in recent years. In fact, recent reports have indicated that cyber crime already surpasses the illegal drug trade! Unethical hackers, better known as black hats, are preying on information systems of government, corporate, public, and private networks and are constantly testing the security mechanisms of these organizations to the limit with the sole aim of exploiting them and profiting from the exercise. High-profile crimes have proven that the traditional approach to computer security is simply not sufficient, even with the strongest perimeter, properly configured defense mechanisms such as firewalls, intrusion detection, and prevention systems, strong end-to-end encryption standards, and anti-virus software. Hackers have proven their dedication and ability to systematically penetrate networks all over the world. In some cases, black hats may be able to execute attacks so flawlessly that they can compromise a system, steal everything of value, and completely erase their tracks in less than 20 minutes! The EC-Council Press is dedicated to stopping hackers in their tracks.

About EC-Council The International Council of Electronic Commerce Consultants, better known as EC-Council, was founded in late 2001 to address the need for well-educated and certified information security and e-business practitioners. EC-Council is a global, member-based organization comprised of industry and subject matter experts all working together to set the standards and raise the bar in information security certification and education. EC-Council first developed the Certified Ethical Hacker (C|EH program). The goal of this program is to teach the methodologies, tools, and techniques used by hackers. Leveraging the collective knowledge from hundreds of subject matter experts, the C|EH program has rapidly gained popularity around the globe and is now delivered in more than 70 countries by more than 450 authorized training centers. More than 60,000 information security practitioners have been trained. C|EH is the benchmark for many government entities and major corporations around the world. Shortly after C|EH was launched, EC-Council developed the Certified Security Analyst (E|CSA).

The goal of the E|CSA program is to teach groundbreaking analysis methods that must be applied while conducting advanced penetration testing. The E|CSA program leads to the Licensed Penetration Tester (L|PT) status. The Computer Hacking Forensic Investigator (C|HFI) was formed with the same design methodologies and has become a global standard in certification for computer forensics. EC-Council, through its impervious network of professionals and huge industry following, has developed various other programs in information security and e-business. EC-Council certifications are viewed as the essential certifications needed when standard configuration and security policy courses fall short. Providing a true, hands-on, tactical approach to security, individuals armed with the knowledge disseminated by EC-Council programs are securing networks around the world and beating the hackers at their own game. About the EC-Council | Press The EC-Council | Press was formed in late 2008 as a result of a cutting-edge partnership between global information security certification leader, EC-Council and leading global academic publisher, Cengage Learning.

Computer Forensics Investigating Data and Image Files

This partnership marks a revolution in academic textbooks and courses of study in information security, computer forensics, disaster recovery, and end-user security. By identifying the essential topics and content of EC-Council professional certification programs, and repurposing this world-class content to fit academic programs, the EC-Council | Press was formed. The academic community is now able to incorporate this powerful cutting-edge content into new and existing information security programs. By closing the gap between academic study and professional certification, students and instructors are able to leverage the power of rigorous academic focus and high demand industry certification. The EC-Council | Press is set to revolutionize global information security programs and ultimately create a new breed of practitioners capable of combating the growing epidemic of cybercrime and the rising threat of cyber-war.

Computer Forensics Series The EC-Council | Press Computer Forensics series, preparing learners for C|HFI certification, is intended for those studying to become police investigators and other law enforcement personnel, defense and military personnel, e-business security professionals, systems administrators, legal professionals, banking, insurance and other professionals, government agencies, and IT managers. The content of this program is designed to expose the learner to the process of detecting attacks and collecting evidence in a forensically sound manner with the intent to report crime and prevent future attacks. Advanced techniques in computer investigation and analysis with interest in generating potential legal evidence are included. In full, this series prepares the learner to identify evidence in computer related crime and abuse cases as well as track the intrusive hacker’s path through client system. Books in Series

• Computer Forensics: Investigation Procedures and Response/1435483499

• Computer Forensics: Investigating Hard Disks, File and Operating Systems/1435483502

• Computer Forensics: Investigating Data and Image Files/1435483510

• Computer Forensics: Investigating Network Intrusions and Cybercrime/1435483529

• Computer Forensics: Investigating Wireless Networks and Devices/1435483537 Investigating Data and Image Files Investigating Data and Image Files provides a basic understanding of steganography, data acquisition and duplication, encase, how to recover deleted files and partitions and image file forensics.

Chapter Contents Chapter 1, Steganography, provides the history and classifications of steganography, explains the difference between steganography and cryptography as well as the essentials of stego-forensics and watermarking. Chapter 2, Data Acquisition and Duplication, focuses on how to determine the best data acquisition method, how to make sure crucial data is not lost, and the importance of data duplication. A description of the tools used for data acquisition and duplication is also included. Chapter 3, Forensic Investigation Using EnCase, includes coverage of this forensic software suite and how investigators can use EnCase to perform different forensic tasks. Chapter 4, Recovering Deleted Files and Deleted Partitions, covers deleting files and the recycling bin as well as file recovery and deleting and recovering partitions. Chapter 5, Image File Forensics, covers the various methods that can be used to recover graphics files. It also highlights the various image recovery, steganalysis, and viewing tools that are used and the salient features of these tools. Chapter Features Many features are included in each chapter and all are designed to enhance the learner’s learning experience. Features include: • Objectives begin each chapter and focus the learner on the most important concepts in the chapter. 

Computer forensics investigating data and image files pdf free download.