Digital Forensics with Kali Linux

More Information
Learn
  • Get to grips with the fundamentals of digital forensics and explore best practices
  • Understand the workings of file systems, storage, and data fundamentals
  • Discover incident response procedures and best practices
  • Use DC3DD and Guymager for acquisition and preservation techniques
  • Recover deleted data with Foremost and Scalpel
  • Find evidence of accessed programs and malicious programs using Volatility.
  • Perform network and internet capture analysis with Xplico
  • Carry out professional digital forensics investigations using the DFF and Autopsy automated forensic suites
About

Kali Linux is a Linux-based distribution used mainly for penetration testing and digital forensics. It has a wide range of tools to help in forensics investigations and incident response mechanisms.

You will start by understanding the fundamentals of digital forensics and setting up your Kali Linux environment to perform different investigation practices. The book will delve into the realm of operating systems and the various formats for file storage, including secret hiding places unseen by the end user or even the operating system. The book will also teach you to create forensic images of data and maintain integrity using hashing tools. Next, you will also master some advanced topics such as autopsies and acquiring investigation data from the network, operating system memory, and so on. The book introduces you to powerful tools that will take your forensic abilities and investigations to a professional level, catering for all aspects of full digital forensic investigations from hashing to reporting.

By the end of this book, you will have had hands-on experience in implementing all the pillars of digital forensics—acquisition, extraction, analysis, and presentation using Kali Linux tools.

Features
  • Master powerful Kali Linux tools for digital investigation and analysis
  • Perform evidence acquisition, preservation, and analysis using various tools within Kali Linux
  • Implement the concept of cryptographic hashing and imaging using Kali Linux
  • Perform memory forensics with Volatility and internet forensics with Xplico.
  • Discover the capabilities of professional forensic tools such as Autopsy and DFF (Digital Forensic Framework) used by law enforcement and military personnel alike
Page Count 274
Course Length 8 hours 13 minutes
ISBN 9781788625005
Date Of Publication 19 Dec 2017

Authors

Shiva V. N Parasram

Shiva V. N Parasram is the director of the Computer Forensics and Security Institute and is a cyber security trainer, pentester, and forensic investigator with 14 years in the field. His qualifications include an MSc in Network Security (distinction), CCISO, CEH, CHFI, and CCNA. As a Certified EC-Council Instructor (CEI), he has also trained several hundred people in ethical hacking and forensics and has recently been selected as the sole trainer for cyber security courses for staff at Fujitsu Trinidad. He is also the author of Digital Forensics with Kali Linux published by Packt.