3.078,00 EGP
Description
Price: [price_with_discount]
(as of [price_update_date] – Details)
[ad_1]
[ad_2]
Related products
-
Sale!
Trapped in a Video Game: The Complete Series
Original price was: 4.900,00 EGP.3.381,00 EGPCurrent price is: 3.381,00 EGP. Add to cart -
Sale!
The Way Things Work: Newly Revised Edition: The Ultimate Guide to How Things Work
Original price was: 3.500,00 EGP.1.834,00 EGPCurrent price is: 1.834,00 EGP. Buy Now -
Steve Jobs
0,00 EGP Add to cart -
Ghost in the Wires: My Adventures as the World’s Most Wanted Hacker
0,00 EGP Add to cart
Great book for DIFR analysts, both new and seasoned
I was asked to review Gerard Johansen’s 3rd edition of the book Digital Forensics and Incident Response that was published in 2022. This is a high level review and should not be seen as a thorough readthrough of the book. Of note, I was provided a free digital copy for review purposes. So let’s get into it!The foundations of the beginning chapters really break down the incident response lifecycle from start to finish. I really liked the breakdown of the responsible parties for an IR case, even showing nontechnical stakeholders having a part in it all.A lot of the IR side of the house is foreign to me as that’s not what I do on a daily basis but it’s good to get understanding of how I as a forensics analyst can work with the other side of the house in times of need during an incident.I’m a sucker for hardware and software so I’m glad to see plenty of tools listed with examples of usage. I’m always looking for new software to add to the toolkit and a saw a few that I’ve never utilized before so I look forward to testing further. I just wonder how many of these tools discussed are now outdated or have newer versions (This came out in 2022 and I’m only now being provided access)? With the ever rapid changes happening in DFIR I can only hope the general techniques still apply. I do think the inclusion of free tools is fantastic as too many examiner’s complain that they can’t do anything without buying commercial tools.I’m glad there was a focus on the actual report writing section of the case lifecycle. This is the hardest part to sometimes nail down in a book and it felt like this book did it justice to a degree.The book covers a vast majority of the DFIR spectrum, even including some chapters on Threat Intelligence and Threat Hunting. The mobile device nerd in me wished it would have been briefly discussed but I guess there are plenty of other books that already have that covered. Overall, I’d recommend this book to those trying to get into the field and for those that want to continue to further their knowledge. I look forward to diver deeper into the pages and see what I can learn an add to my arsenal as forensic analyst.
Much more than Digital Forensics and Incident Response
I was pleasantly surprised to learn that Digital Forensics and Incident Response – Third Edition goes beyond what I expected from an Incident response book by delving into topics like Threat Hunting and Threat Intelligence. All the software used in the book is listed at the beginning.It starts with Foundations of Incident Response and Digital Forensics – This section gives a good background on IR framework based off of NIST IR process. It also covers methodology and fundamentals of IR and IR teams.Evidence Acquisition and analysis are next and this section as implied covers collecting evidence from memory, network, hosts both locally and remotely. Unfortunately collection from cloud instances is not covered, but it may be beyond the scope of the book.Digital Forensics and Incident Response – Third Edition does a great job in detailing how to deal with ransomeware incidents and covers topics such as preparing your systems to be more resilient against ransomeware. The last section goes into threat hunting and I thought this was a great addition to the book. Threat hunting and intelligence is crucial for any network.
A solid foundation for budding Digital forensics practitioners
If you’re seeking an in-depth guide on digital forensics and incident response, this book is a must-have. It provides a solid foundation in incident response, using the NIST framework to help you understand the process from preparation to post-incident activities.The book covers all stages of managing cyber incidents, from detection to recovery and the resumption of ICT and business operations. A crucial aspect of digital forensics is the handling of evidence, and the book offers a thorough history of digital forensics along with detailed procedures for managing evidence.This book is an excellent investment for newcomers to the field of digital forensics and incident response, and it also serves as a valuable reference for experienced professionals.
Libro utile, e’ stato un regalo. Tutto beneð