中文名称:计算机取证高级培训教程
英文名称:Computer Forensics Training - Advanced Digital Forensic Techniques
资源类型:Bin
版本:1-5 -NSiD
发行时间:2007年
地区:美国
语言:英语
简介:
链接来自ShareTheFiles
未经过安全检测与安装测试,您在使用中所产生的任何后果自负皆与本论坛无关
软件版权归原作者及原软件公司所有,如果您喜欢,请购买正版
语言:英语
网址:http://www.careeracademy.com/index.asp?PageAction=VIEWPROD&ProdID=190
类型:教程
计算机犯罪行为(如电子商务纠纷,计算机犯罪等)不断出现,一种新的证据形式——存在于计算机及相关外围设备(包括网络介质)中的电子证据,逐渐成为新的诉讼证据之一。电子证据本身和取证过程的许多有别于传统物证和取证方法的特点,对司法和计算机科学领域都提出了新的研究课题。2001年6月18—22日,在法国图鲁兹城召开的为期5天的第十三届全球FIRST(Forum of Incident Response and Security Teams)年会上,入侵后的系统恢复和分析取证成为此次大会的主要议题。由此可见,作为计算机领域和法学领域的一门交叉科学——计算机取证(Computer Forensics)正逐渐成为人们研究与关注的焦点。
05.13.07.Career.Academy.Advanced.Digital.Forensic.Techniques.Module.1.Computer.Forensic.Investigative.Theory-NSiD
模组一:计算机取证审查理论
05.13.07.Career.Academy.Advanced.Digital.Forensic.Techniques.Module.2.Computer.Forensic.Laboratory.Protocols-NSiD
模组二:计算机取证实验室协议
05.13.07.Career.Academy.Advanced.Digital.Forensic.Techniques.Module.3.Computer.Forensic.Processing.Techniques-NSiD
模组三:计算机取证处理技术
05.13.07.Career.Academy.Advanced.Digital.Forensic.Techniques.Module.4.Crypto.And.Password.Recovery-NSiD
模组四:加密及密码恢复
05.13.07.Career.Academy.Advanced.Digital.Forensic.Techniques.Module.5.Specialized.Artifact.Recovery-NSiD
模组五:专业人工恢复
▀
█ ▀
▀ █ ▄
▀ █ ▄ ▄▓██▀ ▀ ░ █ ▀ ▀▀▀ ▀▀▀
█ ▄ ▀ ▀ ▀▀ ▀ ▀█▀ ▓ ▄▄ ▄ ▀ █ ░ █
▄███▓ ▒ ░ ▄█ ▄▄░█▄▄ █ █ ▄▄▄▀▀███▄▄ ▀ ▀▀█▀▄▄▄▒▄▄▄
█ ▄▄▄▄▀▀▀ ▒▓ ░▓█▄▄▄▄ ▀ ▀ ██▀█▀▄ ██ █ █▀ ▄█▀▓▀▀▀▀█▄
▓ ▄▄▄▀▀▀ ▄▄ ▄▀░█▓░▀▄ ▄▄ ▀▀▀▄▄▄ ▒ █ ▀▄▀ ░▄▀█▀ ▄▄█▀ ▄▀ ▄▄▄██
▄▄▀▀▀ ▄▄▀▄▀▄██ ░██░ ██▄▀▄▀▄▄ ▀▀▀▄▄ ▄▄▀▄ ▀█▒▒██░▄▓▒▀ ▄ ▄▄▄▀▀█▓▓▓██
█ ▄▄▄██▀ ▄█ ███▓ ░██░ ▓███ █▄ ▀██▄▄▄ █ █░▀▄ ▀▄▄█▓█▀░▒█▓ ▄█▄▄▀▀ ▓█ ▓▓█
█ ░▒▓██▀░▄█ ██▓▒ ▒██▒ ▒▓██ █▄░▀██▓▒░ █ █░ ██▄▀▓▀ ░█▓▄▀▀▀ ░░▒ ░██
█ ▒▓██ ░█ ▒ ██▓ ▒██▒ ▓██ ██ ████░▒█ █░ ▓███▒█ ░█▓ ▄ ██
█▒▓▓██░█ ▓ ██▓ ▒██▒ ▓██ ██░███████ █▒ ▒▓██░▒ ▒█ ▄▄███░ ▄ ██
▓▒▓███░█ ▓ ██▒ ▓██▓ ▒██ ██ ▀██████ █▒ ▓██ ▒ ▒█ ▄▀▀█ ███░ ███
█▓████▒█ █ ██░ ▓██▓ ░███▄▄ ▀ ██████ █▒ ▓██ ▓ ▒█ █ █ █▓█ ███
██████▒█ █ ██░ ▓██▓▓ ▀▓█████▄▄▄▀▀▀▀▀ █▓ ▒██ ▓ ▓██ █ ▓ ▓▒█ ███
██████▓█ ░ █ ██ ██ ▀▀██▄▄ ▀███████▄▄▄ █▓ ░██ █ ▓█▓ ░█ ▒ ▒░█ ███
██████▓█ ▒ █ ██░ ▄ ██▓█▄ ▀▄▄ ▀▓████████▄█▓ ░██ █ ▓█░ ▒█ ░░░ █ ███
█▀██████ ▓ █ ██▒ ▀ ▓██▓░▀▀▄▄ ▀▀▄ ▒███████████ ██ █ ██░ ▓█ █ █ ███
█ ██████ █ █ ██▓ ▓ ███▒ █▀ █ ███████▓████ ░██ █ ███▒ ▒██ ▒ █ ███
█░██████░▄▀ █ ███ ▓ ███▀ █▄▄▄▄▄█ ▓██████▒█▓███ ▒██ █████▓░ ▓██ █ ▌█ ░███
█▓████▓█░ █ ███▒▒ ███▀▄ ▓░▒ ▒ ▒██████░██████▓██ ███▓█▓█▓████▄▄▄ █ ▒███
████████░ ░ █ ██▀░▄███▀ ▀▄ ▒▄ ▄▄▀ ▄██████▀█████ ████ ██ ██▀███████▓░███▄▄░▓███
▀████████ ▓▄ ▄▄███▀ ░░ ▀▓█▄▄▄██████████▀▄█▀ ▀███▄█▌ ▀▀▀██████████████▄███
▓▀█████▒ ▀ █▀▀ ░░ ▄▄██▀▀▀▀▀▀███▀ ▄▀ ░░ ▀███ ▀▀▀███████████
▀████░ █ ▒▓▓▓▒▒░▄ ▀▀ ▄▀▀ ▒▒ ██ ░░░▒▒▓▓▓█▄ ▀▀▀▀█████
▀ ▐ ▀
▀▀▄▄ ▀▄ ░ ▀ ▄▀ ▄▄▀▀
▄█▄███▄▄ ██▄ ▄██ ▄▄███▄█▄
██▓ ▀██████ ▄▄ ▄ N O T . S U R E . I F . D U P E. ▄ ▄▄ ██████▀ ▓██
█▓ █████░█ █░█████ ▓█
██ ███▓██░█ r e l e a s e s █░██▓███ ██
▀██▄ ██▀ ▒██▒█ █▒██▒ ▀██ ▄██▀
Career.Academy.Advanced.Digital.Forensic.Techniques.Module.5.Specialized.Artifact.Recovery-NSiD
█▄ ▀▄ ████ ███ ▄▀ ▄██
░██▄▄ ████ a n y w a y s ! ███ ▄▄██░░
▒▓ ██▀▄ ████▄ ▄ ▄ ▄███ ▄▀██ ▓▒▒
▓█▄ ▄ ▄ ▄█▓
████▄▄ █████▓▓▒▓▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀ ▀▀▓▒ ▓█████ ▄▄████
▀█████▄█ █▄█████▀
░ ▀████▌ ▄▄ ▄▄▄ █ ▄▄▄ ▄▄ ▄▄▄▄ ▄▄▄ ▐████▀ ░
░░░ ░▒███▓ ░▒▓▓ █ ▀█▄▄▀ █ █▄▄▀ ▄▄▄█ ▀ ▄▀ █▄▄▀ ▓▓▒░ ▓███▒░ ░░░
░░ ███▀ ▓ ▀▄█ █▄▀ ▀▄█ █▄▄█ ▄█▄▄█ ▀▄█ ▀███ ░░
░ ██▀█ █▀██ ░
▒ ▄█▀█ █ █ █▀█▄ ▒
▓▄█▀ █ █ █ █ ▀█▄▓
██ █ █ █ █ ██
███ █ █ █ █ ███
███▄░ █ █ █ █ ░▄███
██ ▀█▄█ █ Rls.Date....:May 12th 2007 █ █▄█▀ ██
██ ░▓██ █ Total.CD....:1 CD █ ██▓░ ██
██ ▒ █▌█ Files.......:14x15Mb █▐█ ▒ ██
██ ░▐███ Type........:Video Training ███▌░ ██
██ ██▌█ Format......:ISO █▐██ ██
██ ▄███ █ Platform....:WIN/MAC █ ███▄ ██
█▄███▀█ █ Protection..:None █ █▀███▄█
▌███ █ █ EARL........:http://www.careeracademy.com/index.asp?PageAction=VIEWPROD&ProdID=190
████▌ █ █ ▀ ▀ █ █ ▐████
▓█▀██▄█ █ ▄ ▄ █ █▄██▀█▓
██▄▀██████▓▌ ▐▓██████▀▄██
███▄ ▀███▄▀ ▀▄███▀ ▄███
████▄ █ █ █ █ ▄████
██████▄ █ █ ▄██████
██▓██████ ██████▓██
█▀▄▄██████ ▀▄▄ ▄▄ ▄█▄ ▄▄▄ ▄▄▄▄ ██████▄▄▀█
▐██▀ ▀████ ░▒▓▓ █ █ █ █ █ █▄▄▀ ▀ ▄▀ ▓▓▒░ ████▀ ▀██▌
██ ▄▀ ▒ ███▓ █ ▓ ▀▄▄█ █▄▀ ▀▄█ ▄█▄▄█ ▓███ ▒ ▀▄ ██
██▐█▄ ▄███░ ░███▄ ▄█▌██
██ ▀█████▀ ▀█████▀ ██
▐█▄ ▄▄▀ ░ ░ ▀▄▄ ▄█▌
▀███▀░ ▓ ▓ ░▀███▀
█▄ ░ ░
░
The dramatic increase in computer-related crime requires corporate security
personnel and law enforcement agents to understand how to legally obtain electronic
evidence stored in computers. Electronic records such as computer network logs,
e-mails, word processing files, and ô.jpgö picture files increasingly provide the
government and corporations with important (and sometimes essential) evidence in
criminal and civil cases. One of the purposes of this course is to provide law
enforcement agents and corporate security personnel with systematic guidance that
can help them understand some of the issues that arise when they seek electronic
evidence in criminal and civil investigations.
Module 5 - Specialized Artifact Recovery
Overview
Exam Preparation Stage
Windows File Date/Time Stamps
File Signatures
Image File Databases
Demo - Thumbs.DB
The Windows OS
Windows Operating Environment
Windows Registry
Windows Registry Hives 1
Demo - Registry Overview
Windows Registry Hives 2
Windows 98 Registry
Windows NT/2000/XP Registry
Windows Registry ID Numbers
Windows Alternate Data Streams
Demo - Alternate Data Streams
Windows Unique ID Numbers
Other IDÆs
Historical Files 1
Demo - Real Index.dat
Historical Files 2
Demo - Review of Event Viewer
Historical Files 3
Demo - Historical Entries in the Registry
Historical Files 4
Windows Recycle Bin
Demo - INFO Files
Outlook E-Mail
Outlook 2k/Workgroup E-Mail
Outlook Express 4/5/6
Web E-Mail
Module 5 Review
▄
█ ▀▄
▀██▄▄ █ █ ▄▄██▀
░░ ▀██▄ ▄██▀ ░░
░ ███ ███ ░
░ ▄███ ▄▄ ▄▄ ▄▄▄ ▄▄▄▄█▄ ▄▄▄▄ ███▄ ░
▄█████ ░▒▓▓ █ ▄▄█ ▀█▄▄▀█▄▄▀ █ ▀ ▄▀ ▓▓▒░ █████▄
▄████▀ █ ▀▄▄█▓ ▀▄█ ▀▄█ █▄▀▄█▄▄█ █ ▀████▄
████▀ █ █ █ █ ▀████
███ █ █ JGTiSO/LiBiSO/DDUiSO/fJr/ViH/SOSiSO/CAUiSO/SUNiSO █ █ ████
░█▐ ▒ ▓ And anyone else who I might have missed ▓ ▒ ▌█░█
░█▐ ▓ █ █ ▓ ▌█░█
▒█▀ ▓ █ █ ▓ ▀█▒█
▓░ ▓ █ █ ▓ ░▓█
█▓▄ █ █ █ █ ▄▓██
████ █░█ If you want to contact me you will figure out how ... █░█ █████
█████ █▒█ █▒█ ██████
███████▓█ █▓████████
█████████ █████████▓
▀▀██████▄ ▀ ▀ ▄██████▀▀ ░
▀▀█████ ▄▄▄ █ █ ▄▄▄ █████▀▀ ▀
█ ▄▀▀███▄ ▓ not sure if it's duped? who cares! 2007 ▓ ▄███▀▀▄ █
▓ ░█▒█ ▀██▄ █ █ ▄██▀ █▒█░ █
█ ░█▒█ ▀▄ ██▄▄ NFO/BROWNBUN!iND ▄▄██ ▄▀ █▒█░ █
█ █▄▄▄▄▄▄▄▄▄▄▄▄███████████▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄███████████▄▄▄▄▄▄▄▄▄▄▄▄█ █
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
