Malware forensics field guide for Windows Systems

All good books deserve a reference and this one is one of them. Malware forensics field guide for Windows systems.

book1

 

The book is very easy to read and mainly practical. It goes from describing the general IR process to advance subjects such as memory forensics, live and dead analysis of windows systems and malware analysis.

This book is particularly useful if you are in the field of IR and threat intelligence, all the techniques and technologies described here are the day to day to respond to an incident and threat hunt in your environment, it also illustrates what evidence is possible to extract and convert into actionable threat intelligence.

I cannot find any cons to this book but many pros. The book is full of exercises, references to take your knowledge further and is a very very good foundation to build up the IR technical knowledge.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s