Windows 10 Forensic...
 
Notifications
Clear all

Windows 10 Forensic Analysis

8 Posts
5 Users
0 Likes
1,422 Views
Igor_Michailov
(@igor_michailov)
Posts: 529
Honorable Member
Topic starter
 

Hi guys,

Did somebody read the book?

Do you like it?

Who is the author?

 
Posted : 15/01/2017 9:05 pm
jaclaz
(@jaclaz)
Posts: 5133
Illustrious Member
 

Who is the author?

by Rhys P J Evans (Author)

https://uk.linkedin.com/in/rhys-pj-evans

A highly skilled and determined professional working in the Digital Forensics and Private Investigation industry. I am skilled in the forensic examination of digital media to prepare evidence for representation in a court of law in accordance to investigatory guidelines.

I am proficient in Computer Forensics involving imaging, examination and presentation. I am proficient in Networking involving routing and switching, configuration and troubleshooting. I am proficient in Security Systems involving security, protection and risk mitigation. I am proficient in the Legal System involving computer related legislation, court room advocacy and judicial practices. I also have rudimentary experience with Python Scripting and C# programming.

I love to research and pursue understanding of new technological advancements that may pose interest to the forensic practitioner; to stand on the shoulders of giants.

Birmingham City University
Bachelor’s Degree, Forensic Computing, First Class Honours
2013 – 2016

He is proficient …

You can pre-view a few pages on blurb, here
http//www.blurb.com/books/7280427-windows-10-forensic-analysis

(it is a self-published thingy)

jaclaz

 
Posted : 15/01/2017 10:33 pm
(@athulin)
Posts: 1156
Noble Member
 

(it is a self-published thingy)jaclaz

And I thought it was another Syngress book …

A documented, investigative framework for the forensic analysis of the Windows 10 operating system conducive to the forensic practitioner.

 
Posted : 16/01/2017 12:53 am
RolfGutmann
(@rolfgutmann)
Posts: 1185
Noble Member
 

Only semi-proficient

 
Posted : 16/01/2017 11:54 am
(@deever)
Posts: 2
New Member
 

The author Brian Carrier is good. He has created some good open source tools like TSK (the sleuth kit); as well as, authored a couple of different books. I would suggest looking him up. Depending on what your looking for, his books/tutorials may help you.

 
Posted : 16/01/2017 6:34 pm
Igor_Michailov
(@igor_michailov)
Posts: 529
Honorable Member
Topic starter
 

Hello deever,

Many thanks.

But I need to get more info about the book (Windows 10 Forensic Analysis) and the author.

I don't want to throw away money.

 
Posted : 16/01/2017 6:43 pm
(@deever)
Posts: 2
New Member
 

Google hasn't really helped find information about the author, other than showing his academic background.

Attached is a web link that shows the table of contents. It seems to be the only site that actually shows any content from the book. Chapter 8 seems to be the most important. It talks about new features exclusive to Win10, like Edge or Cortana. I believe Windows10 is the first OS to have OneDrive natively installed, so that section may be of importance.

I also see two chapters about virtualization and case studies which may be of importance. The book also looks at TSK, 'other techniques/tools', and the recycle bin. Unfortunately, I have yet to find a single review for this book.

http//www.blurb.com/books/7280427-windows-10-forensic-analysis

Hope this helps.

 
Posted : 16/01/2017 7:58 pm
jaclaz
(@jaclaz)
Posts: 5133
Illustrious Member
 

Attached is a web link that shows the table of contents. …

http//www.blurb.com/books/7280427-windows-10-forensic-analysis

Very different from the one already posted. roll
http//www.forensicfocus.com/Forums/viewtopic/p=6586899/#6586899

The Author, judging from the fact that he obtained a Birmingham City University
Bachelor’s Degree, Forensic Computing, in years 2013 – 2016 is a nice chap with little or no real-life experience, that self-published his own "Bachelor of Science Honour Project" (as stated on the front cover of the book and in its preamble).

Reading the available parts, it seems a lot like a BS (Bachelor of Science) final paper (which is what it actually is) with all the usefulness such a document can provide.
The first chapters (the available parts) are dedicated to citing pre-existing works and criticizing them, besides stating how they are out of date (the latter being a self-evident truth since Windows 10 was released in it's almost final form only in second half of 2015) .

jaclaz

 
Posted : 17/01/2017 1:39 am
Share: