analysis, Book, forensics, Incident response, malware, Uncategorized

Malware forensics field guide for Windows Systems

Posted by Samuel Alonso on

All good books deserve a reference and this one is one of them. Malware forensics field guide for Windows systems.

book1

 

The book is very easy to read and mainly practical. It goes from describing the general IR process to advance subjects such as memory forensics, live and dead analysis of windows systems and malware analysis.

This book is particularly useful if you are in the field of IR and threat intelligence, all the techniques and technologies described here are the day to day to respond to an incident and threat hunt in your environment, it also illustrates what evidence is possible to extract and convert into actionable threat intelligence.

I cannot find any cons to this book but many pros. The book is full of exercises, references to take your knowledge further and is a very very good foundation to build up the IR technical knowledge.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s