1 option
X-Ways Forensics practitioner's guide / Brett Shavers, Eric Zimmerman ; Jimmy Weg, technical editor.
- Format:
- Book
- Author/Creator:
- Shavers, Brett.
- Zimmerman, Eric, 1974- author.
- Series:
- Gale eBooks
- Language:
- English
- Subjects (All):
- X-Ways Forensics (Computer program).
- Forensic sciences.
- Criminal investigation.
- Physical Description:
- 1 online resource (xxii, 242 pages) : illustrations
- Edition:
- 1st edition
- Place of Publication:
- Waltham, MA : Syngress, 2014.
- System Details:
- text file
- Summary:
- The X-Ways Forensics Practitioner's Guide is more than a manual-it's a complete reference guide to the full use of one of the most powerful forensic applications available, software that is used by a wide array of law enforcement agencies and private forensic examiners on a daily basis. In the X-Ways Forensics Practitioner's Guide, the authors provide you with complete coverage of this powerful tool, walking you through configuration and X-Ways fundamentals, and then moving through case flow, creating and importing hash databases, digging into OS artifacts, and conducting searches.</
- Contents:
- Front Cover; X-Ways Forensics Practitioner's Guide; Copyright; Contents; Acknowledgments; About the Authors; Foreword; Introduction; Introduction; Intended audience; Brief history of X-Ways Forensics; Comparisons to ``other ́ ́ forensic suites; Organization of this book; Chapter 1: Installation and configuration of X-Ways Forensics; Chapter 2: Case management and imaging; Chapter 3: Navigating the X-Ways Forensics interface; Chapter 4: Refine volume Snapshot; Chapter 5: The XWF internal hash database and registry viewer; Chapter 6: Searching in X-Ways Forensics; Chapter 7: Advanced use of XWF
- Chapter 8: X-Ways Forensics reportingChapter 9: X-Ways Forensics and electronic discovery; Chapter 10: Consent to search and supervision of paroles; Summary; Chapter 1: Installation and Configuration of X-Ways Forensics; Introduction; System requirements; Installing XWF; Alternative install methods; The XWF dongle; Upgrading your dongle; The XWF user interface; Configuring XWF; Summary; Reference; Chapter 2: Case Management and Imaging; Introduction; Creating a case file; Creating a new case; General case information section; Audit trail and activity logging section; Code pages section
- Other options sectionCreating/Adding evidence files; Creating Forensic images with XWF; Live response using XWF; Using XWF to review medium while imaging; Reverse imaging; Skeleton imaging; Cleansed imaging; CD/DVD; Physical memory imaging; Container files; Working with RAID arrays; Augmenting with F-Response; Shortcuts; Summary; Chapter 3: Navigating the X-Ways Forensics Interface; Introduction; Case Data directory tree; Right click behaviors; Middle-click behaviors; Toolbar, tab control, and Directory Browser Options, Filters; General Options; Item listing options
- Directory Browser column and filter optionsDirectory Browser columns; Directory Browser; Column sorting; Column filtering; Directory Browser context menu; Mode buttons and Details pane; Legend mode; Volume/Partition mode; Disk mode; File mode; Preview mode; Details mode; Gallery mode; Calendar mode; Directory Browser mode; Sync mode; Explore recursively mode; Search hit list mode; Events mode; Position manager mode; Status bar; Right clicking the status bar; Left clicking the status bar; Data Interpreter; Main menu; General Options continued; Volume Snapshot options
- Viewer Programs options continuedSecurity Options; Shortcuts; Summary; Chapter 4: Refine Volume Snapshot; Introduction; Volume snapshot options; Starting RVS; Take new one and default RVS options; RVS options; File recovery options; File processing options; Extract e-mail messages and attachments from. . .; Results of an RVS; Shortcuts; Summary; Reference; Chapter 5: The XWF Internal Hash Database and the Registry Viewer; Introduction; XWF internal hash database and hash sets; Hash categories; Computing hash values; Creating hash sets; Duplicate hash values
- The registry through X-Ways Forensics
- Notes:
- Description based upon print version of record.
- Includes bibliographical references and index.
- Description based on print version record.
- ISBN:
- 9780124116221
- 0124116221
- OCLC:
- 881831397
The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.