Network Forensics

Network Forensics

4.11 - 1251 ratings - Source

a€œThis is a must-have work for anybody in information security, digital forensics, or involved with incident handling. As we move away from traditional disk-based analysis into the interconnectivity of the cloud, Sherri and Jonathan have created a framework and roadmap that will act as a seminal work in this developing field.a€ a€“ Dr. Craig S. Wright (GSE), Asia Pacific Director at Global Institute for Cyber Security + Research. a€œIta€™s like a symphony meeting an encyclopedia meeting a spy novel.a€ a€“Michael Ford, Corero Network Security On the Internet, every action leaves a marka€“in routers, firewalls, web proxies, and within network traffic itself. When a hacker breaks into a bank, or an insider smuggles secrets to a competitor, evidence of the crime is always left behind. Learn to recognize hackersa€™ tracks and uncover network-based evidence in Network Forensics: Tracking Hackers through Cyberspace. Carve suspicious email attachments from packet captures. Use flow records to track an intruder as he pivots through the network. Analyze a real-world wireless encryption-cracking attack (and then crack the key yourself). Reconstruct a suspecta€™s web surfing historya€“and cached web pages, tooa€“from a web proxy. Uncover DNS-tunneled traffic. Dissect the Operation Aurora exploit, caught on the wire. Throughout the text, step-by-step case studies guide you through the analysis of network-based evidence. You can download the evidence files from the authorsa€™ web site (, and follow along to gain hands-on experience. Hackers leave footprints all across the Internet. Can you find their tracks and solve the case? Pick up Network Forensics and find out.Here is an example from Francka#39;s OFT dissector in action, used with tshark: $ tshark -r evidence01.pcap -X ... Anna#39;s Bad AIM, tshark identified the higher-layer protocol as an OFT2 a€œPrompta€ message, confirming our manual findings from earlier.

Title:Network Forensics
Author:Sherri Davidoff, Jonathan Ham
Publisher:Prentice Hall - 2012-06-18


You Must CONTINUE and create a free account to access unlimited downloads & streaming