Windows 10 Forensic Analysis

Who is the author?

by Rhys P J Evans (Author)

https://uk.linkedin.com/in/rhys-pj-evans

A highly skilled and determined professional working in the Digital Forensics and Private Investigation industry. I am skilled in the forensic examination of digital media to prepare evidence for representation in a court of law in accordance to investigatory guidelines.

I am proficient in Computer Forensics involving imaging, examination and presentation. I am proficient in Networking involving routing and switching, configuration and troubleshooting. I am proficient in Security Systems involving security, protection and risk mitigation. I am proficient in the Legal System involving computer related legislation, court room advocacy and judicial practices. I also have rudimentary experience with Python Scripting and C# programming.

I love to research and pursue understanding of new technological advancements that may pose interest to the forensic practitioner; to stand on the shoulders of giants.
…
Birmingham City University
Bachelor’s Degree, Forensic Computing, First Class Honours
2013 – 2016

He is proficient …

You can pre-view a few pages on blurb, here
http//www.blurb.com/books/7280427-windows-10-forensic-analysis

(it is a self-published thingy)

jaclaz

(it is a self-published thingy)jaclaz

And I thought it was another Syngress book …

A documented, investigative framework for the forensic analysis of the Windows 10 operating system conducive to the forensic practitioner.

Only semi-proficient

The author Brian Carrier is good. He has created some good open source tools like TSK (the sleuth kit); as well as, authored a couple of different books. I would suggest looking him up. Depending on what your looking for, his books/tutorials may help you.

Hello deever,

Many thanks.

But I need to get more info about the book (Windows 10 Forensic Analysis) and the author.

I don't want to throw away money.

Google hasn't really helped find information about the author, other than showing his academic background.

Attached is a web link that shows the table of contents. It seems to be the only site that actually shows any content from the book. Chapter 8 seems to be the most important. It talks about new features exclusive to Win10, like Edge or Cortana. I believe Windows10 is the first OS to have OneDrive natively installed, so that section may be of importance.

I also see two chapters about virtualization and case studies which may be of importance. The book also looks at TSK, 'other techniques/tools', and the recycle bin. Unfortunately, I have yet to find a single review for this book.

http//www.blurb.com/books/7280427-windows-10-forensic-analysis

Hope this helps.

Attached is a web link that shows the table of contents. …

http//www.blurb.com/books/7280427-windows-10-forensic-analysis

Very different from the one already posted. roll
http//www.forensicfocus.com/Forums/viewtopic/p=6586899/#6586899

The Author, judging from the fact that he obtained a Birmingham City University
Bachelor’s Degree, Forensic Computing, in years 2013 – 2016 is a nice chap with little or no real-life experience, that self-published his own "Bachelor of Science Honour Project" (as stated on the front cover of the book and in its preamble).

Reading the available parts, it seems a lot like a BS (Bachelor of Science) final paper (which is what it actually is) with all the usefulness such a document can provide.
The first chapters (the available parts) are dedicated to citing pre-existing works and criticizing them, besides stating how they are out of date (the latter being a self-evident truth since Windows 10 was released in it's almost final form only in second half of 2015) .

jaclaz