HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 54 guests online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Forensicsarrow reading "File System Forensic Analysis"..I have questions.
EH-Net
May 18, 2013, 10:16:16 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: reading "File System Forensic Analysis"..I have questions.  (Read 13058 times)
0 Members and 1 Guest are viewing this topic.
YuckTheFankees
Sr. Member
****
Offline Offline

Posts: 324


View Profile
« on: December 17, 2011, 02:11:20 PM »
This book is very detailed, at least to me...I don't know if this is a beginner book? But I have some questions.

It's taking a while to get through the book because I'm taking notes, but is it okay if some of the concepts are kind of over my head? I'm reading about the details of extended partitions, and half way through..I'm like whaaaat? I'm grasping about 90% of the material but sometimes I try to re-read the section 3-4 times, and I'm still lost...it might be the jargon..I dont know.
Logged
OSCP in progress
Solinus
Newbie
*
Offline Offline

Posts: 31


View Profile
« Reply #1 on: December 27, 2011, 12:35:59 PM »
This is a very hard book to get through without a very strong file system background. Some of the information is really at the level of a full time dedicated lab. There are areas that you won't get into without some very expensive equipment. The concepts are valuable, but you may want to start with a book about the file system operation before you learn the forensics. Might be a more logical progression for getting the information that you are seeking.
Logged
Kerry
MCITP:EA | MCTS(x5) | MCSA+ | MCSE+ | Security + | CCNA | WCSP |
DSCE | PCT |CIW Security Analyst | CSSA
YuckTheFankees
Sr. Member
****
Offline Offline

Posts: 324


View Profile
« Reply #2 on: December 27, 2011, 12:37:29 PM »
What books would you recommend first?
Logged
OSCP in progress
ajohnson
Recruiters
Hero Member
*
Offline Offline

Posts: 1056


aka dynamik


View Profile WWW
« Reply #3 on: December 27, 2011, 01:16:01 PM »
I haven't read this myself, but I've seen favorable things about this book lately: http://www.amazon.com/Computer-Forensics-JumpStart-Michael-Solomon/dp/0470931663/ref=wl_it_dp_o_npd?ie=UTF8&coliid=I75F9PZSLC6M3&colid=BQRJ4R1QKAS2

That might be a more accessible starting place.
Logged
WIP: GCFA | www.infosiege.net | @infosiege

The day you stop learning is the day you start becoming obsolete.
YuckTheFankees
Sr. Member
****
Offline Offline

Posts: 324


View Profile
« Reply #4 on: December 27, 2011, 02:40:47 PM »
I read that book about 3 weeks ago and even posted a book review for it as well.
Logged
OSCP in progress
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.068 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.