First Responders Guide to Computer Forensics: Advanced Topics

This handbook expands on the technical material presented in SEI handbook CMU/SEI-2005-HB-001, First Responders Guide to Computer Forensics. While the latter presented techniques for forensically sound collection of data and explained the fundamentals of admissibility pertaining to electronic files, this handbook covers more advanced technical operations such as process characterization and spoofed email. It describes advanced methodologies, tools, and procedures for applying computer forensics when performing routine log file reviews, network alert verifications, and other routine interactions with systems and networks. The material will help system and network professionals to safely preserve technical information related to network alerts and other security issues.

PDF [6389 KB]

Authors

Richard Nolan

Michele Baker

Jake Branson

Josh Hammerstein

Kristopher Rush

Cal Waits

Elizabeth Schweinsberg

This report is related to the following area(s) of work:

Digital Intelligence and Forensics
Security and Survivability

Handbook
CMU/SEI-2005-HB-003
September 2005

Cite This Report

SEI:

Nolan, Richard; Baker, Michele; Branson, Jake; Hammerstein, Josh; Rush, Kristopher; Waits, Cal; & Schweinsberg, Elizabeth. First Responders Guide to Computer Forensics: Advanced Topics (CMU/SEI-2005-HB-003). Software Engineering Institute, Carnegie Mellon University, 2005. http://www.sei.cmu.edu/library/abstracts/reports/05hb003.cfm

IEEE:

R. Nolan, M. Baker, J. Branson, J. Hammerstein, K. Rush, C. Waits, and E. Schweinsberg, "First Responders Guide to Computer Forensics: Advanced Topics," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Handbook CMU/SEI-2005-HB-003, 2005. http://www.sei.cmu.edu/library/abstracts/reports/05hb003.cfm

APA:

Nolan, R., Baker, M., Branson, J., Hammerstein, J., Rush, K., Waits, C., & Schweinsberg, E. (2005). First Responders Guide to Computer Forensics: Advanced Topics (CMU/SEI-2005-HB-003). Retrieved June 20, 2013, from the Software Engineering Institute, Carnegie Mellon University website: http://www.sei.cmu.edu/library/abstracts/reports/05hb003.cfm

CHI:

Nolan, Richard, Michele Baker, Jake Branson, Josh Hammerstein, Kristopher Rush, Cal Waits, and Elizabeth Schweinsberg. First Responders Guide to Computer Forensics: Advanced Topics (CMU/SEI-2005-HB-003). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2005. http://www.sei.cmu.edu/library/abstracts/reports/05hb003.cfm

MLA:

Nolan, R., Baker, M., Branson, J., Hammerstein, J., Rush, K., Waits, C., & Schweinsberg, E. 2005. First Responders Guide to Computer Forensics: Advanced Topics (Technical Report CMU/SEI-2005-HB-003). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://www.sei.cmu.edu/library/abstracts/reports/05hb003.cfm

Find Us Here

Find us on Youtube  Find us on LinkedIn  Find us on twitter  Find us on Facebook

Share This Page

Share on Facebook  Send to your Twitter page  Save to del.ico.us  Save to LinkedIn  Digg this  Stumble this page.  Add to Technorati favorites  Save this page on your Google Home Page 

For more information

Contact Us

info@sei.cmu.edu

412-268-5800

Help us improve

Visitor feedback helps us continually improve our site.

Please tell us what you
think with this short
(< 5 minute) survey.