Notifications
Clear all

Books that every Forensics Investigator should read

CopyRight
(@copyright)
Active Member

Hey,

So in here you guys can help build a must read "forensic library", suggestions on what books should folks like us read, "The Cuckoo's Egg" and so on.

Thanks.

Quote
Topic starter Posted : 03/03/2014 9:06 am
Jamie
(@jamie)
Community Legend

Some classic/essential texts (note one or two are now a bit long in the tooth, although some have more recent editions)

Forensic Computing A Practitioner's Guide - Tony Sammes and Brian Jenkinson
The Basics of Digital Forensics The Primer for Getting Started in Digital Forensics - John Sammons
File System Forensic Analysis - Brian Carrier
Digital Evidence and Computer Crime Forensic Science, Computers, and the Internet - Eoghan Casey
Digital Forensics with Open Source Tools - Cory Altheide and Harlan Carvey
Windows Registry Forensics Advanced Digital Forensic Analysis of the Windows Registry - Harlan Carvey
Real Digital Forensics Computer Security and Incident Response - Keith J. Jones, Richard Bejtlich and Curtis W. Rose
X-Ways Forensics Practitioner's Guide - Brett Shavers and Eric Zimmerman

ReplyQuote
Posted : 03/03/2014 6:26 pm
Igor_Michailov
(@igor_michailov)
Senior Member

Forensic Computing A Practitioner's Guide - Tony Sammes and Brian Jenkinson
The Basics of Digital Forensics The Primer for Getting Started in Digital Forensics - John Sammons
File System Forensic Analysis - Brian Carrier
Digital Evidence and Computer Crime Forensic Science, Computers, and the Internet - Eoghan Casey
Digital Forensics with Open Source Tools - Cory Altheide and Harlan Carvey
Windows Registry Forensics Advanced Digital Forensic Analysis of the Windows Registry - Harlan Carvey
Real Digital Forensics Computer Security and Incident Response - Keith J. Jones, Richard Bejtlich and Curtis W. Rose
X-Ways Forensics Practitioner's Guide - Brett Shavers and Eric Zimmerman

Windows Forensic Analysis Toolkit, Third Edition Advanced Analysis Techniques for Windows 7 by Harlan Carvey

Windows Forensic Analysis DVD Toolkit, Second Edition

! Windows Forensic Analysis Toolkit, Fourth Edition Advanced Analysis Techniques for Windows 8 by Harlan Carvey (Apr 15, 2014)

Mastering Windows Network Forensics and Investigation by Steven Anson and Steve Bunting

ReplyQuote
Posted : 03/03/2014 11:25 pm
EricZimmerman
(@ericzimmerman)
Active Member

Im happy to have made the list! =)

ReplyQuote
Posted : 04/03/2014 9:16 pm
nlpd120
(@nlpd120)
Member

You have all listed some great books here are some other additions to consider. I understand some of these are dated, but the information in them is still valuable. I would also add consideration for books on the operating system i.e. Windows Internals, Apple Training Series Books, Mac OSX Internals and Linux books are very helpful. And of course those that focus on Malware, Security, Hacking, Android, iOS, Sqlite and so forth.

Here are ones that I would recommend (my apologies for any typos or if I left an author out)

Android Forensics Investigation, Analysis and Mobile Security for Google Android Andrew Hoog

iPhone Forensics Recovering Evidence, Personal Data, and Corporate Assets Jonathan Zdziarski

Mac OS X, iPod, and iPhone Forensic Analysis DVD Toolkit Ryan Kubasiak, Sean Morrissey, Jesse Varsalone

iPhone and iOS Forensics Investigation, Analysis, and Mobile Secuirty iPhone, iPad and iOS Devices Andrew Hoog and Katie Strzempka

EnCase Computer Forensics The Official EnCase Certified Examiner Study Guide Steve Bunting
Malware Forensics Field Guide for Linux Systems Cameron H. Malin, Eoghan Casey and James Aquilina

Malware Forensics Field Guide for Windows Systems Cameron Malin, Eoghan Casey, and james Aquilina.

Cyber Crime Investigations Bridging the Gaps Between Security Professionals, Law Enforcement, and Prosecutors. Anthony Reyes, Richard Brittson, Kevin O'Shea, James Steele, Ben Jean, Thomas Ralph.

Happy eReading.

Chris Currier

ReplyQuote
Posted : 07/03/2014 9:24 am
nlpd120
(@nlpd120)
Member

You have all listed some great books here are some other additions to consider. I understand some of these are dated, but the information in them is still valuable. I would also add consideration for books on the operating system i.e. Windows Internals, Apple Training Series Books, Mac OSX Internals and Linux books are very helpful. And of course those that focus on Malware, Security, Hacking, Android, iOS, Sqlite and so forth.

Here are ones that I would recommend (my apologies for any typos or if I left an author out)

Android Forensics Investigation, Analysis and Mobile Security for Google Android Andrew Hoog

iPhone Forensics Recovering Evidence, Personal Data, and Corporate Assets Jonathan Zdziarski

Mac OS X, iPod, and iPhone Forensic Analysis DVD Toolkit Ryan Kubasiak, Sean Morrissey, Jesse Varsalone

iPhone and iOS Forensics Investigation, Analysis, and Mobile Secuirty iPhone, iPad and iOS Devices Andrew Hoog and Katie Strzempka

EnCase Computer Forensics The Official EnCase Certified Examiner Study Guide Steve Bunting
Malware Forensics Field Guide for Linux Systems Cameron H. Malin, Eoghan Casey and James Aquilina

Malware Forensics Field Guide for Windows Systems Cameron Malin, Eoghan Casey, and james Aquilina.

Cyber Crime Investigations Bridging the Gaps Between Security Professionals, Law Enforcement, and Prosecutors. Anthony Reyes, Richard Brittson, Kevin O'Shea, James Steele, Ben Jean, Thomas Ralph.

Happy eReading.

Chris Currier

ReplyQuote
Posted : 07/03/2014 9:29 am
bshavers
(@bshavers)
Active Member

Im happy to have made the list! =)

I, too, am honored to be on this list.

I posted a number of books that I have read over the years, each of which I would critique as good and informative reads. Rather than list them here, the list along with my brief critiques of each book is on the WinFE blog (winfe.wordpress.com/books/). The comments about each book are my opinions only. D

ReplyQuote
Posted : 08/03/2014 4:12 am
nlpd120
(@nlpd120)
Member

Brett,

Great comments and I found myself in agreement with the books that I have. I left out two (and not on purpose) that I do like and should be on any list for consideration. Again it does not take long for this material to be dated. However, I think you will find these are still handy resources if you need them

CD and DVD Forensics
Paul Crowley and Dave Kleiman
http//www.infinadyne.com

also

Computer Evidence Collection & Preservation
Christopher LT Brown
http//www.techpathways.com/

I provided web links for websites and I should have done the same for the other books as well. They are many times just as valuable.

My sincere thanks to all of the authors in the Digital Forensics Arena for your contributions.

Thank you,

Chris Currier

ReplyQuote
Posted : 08/03/2014 7:30 am
Igor_Michailov
(@igor_michailov)
Senior Member

UNIX and Linux Forensic Analysis by Pogue, Chris, Altheide, Cory and Haverkos, Todd (Jul 24, 2008)

D

ReplyQuote
Posted : 08/03/2014 11:10 am
CopyRight
(@copyright)
Active Member

Thanks everyone for sharings whats worth GOLD to every forensics expert , you guys are the best =)..

The list looks goregous.

ReplyQuote
Topic starter Posted : 17/03/2014 8:02 am
Share: