Packt Publishing | English | 2022 | ISBN-13: 9781801070331 | 304 pages | EPUB (True), MOBI, PDF | 128 MB - RAR
Who this book is for
This book is for incident responders, digital forensic specialists, cybersecurity analysts, system administrators, malware analysts, students, and curious security professionals new to this field and interested in learning memory forensics. A basic understanding of malware and its working is expected. Although not mandatory, knowledge of operating systems internals will be helpful. For those new to this field, the book covers all the necessary concepts.
Table Of Contents
Basics of Memory Forensics 1
Why Memory Forensics? 3
Acquisition Process 11
Windows Forensic Analysis 25
Windows Memory Acquisition 27
Reconstructing User Activity with Windows Memory Forensics 41
Malware Detection and Analysis with Windows Memory Forensics 81
Alternative Sources of Volatile Memory 133
Linux Forensic Analysis 171
Linux Memory Acquisition 173
User Activity Reconstruction 187
Malicious Activity Detection 215
macOS Forensic Analysis 241
MacOS Memory Acquisition 243
Malware Detection and Analysis with macOS Memory Forensics 257
Index 275
About Packt 283
Other Books You May Enjoy 284
Copyright