Davidoff, Sherri <br/><br/>
Network forensics :  tracking hackers through cyberspace / 
Sherri Davidoff and Jonathan Ham 
 - Upper Saddle River, NJ :   Prentice Hall,   c2012. 
 - xxvii, 545 pages :   illustrations ;   24 cm. 
<br/><br/>Includes bibliographical references and index. 
<br/><br/>Part I: Foundation --<br/>Practical investigative strategies --<br/>Technical fundamentals --<br/>Evidence acquisition --<br/>Part II: Traffic analysis --<br/>Packet analysis --<br/>Statistical flow analysis --<br/>Wireless : network forensics unplugged --<br/>Network intrusion detection and analysis --<br/>Part III: Network devices and servers --<br/>Event log aggregation, correlation, and analysis --<br/>Web proxies --<br/>Part IV: Advanced topics --<br/>Network tunneling --<br/>Malware forensics. 
<br/><br/> "Learn to recognize hackers’ tracks and uncover network-based evidence in Network Forensics: Tracking Hackers through Cyberspace.Carve suspicious email attachments from packet captures. Use flow records to track an intruder as he pivots through the network. Analyze a real-world wireless encryption-cracking attack (and then crack the key yourself). Reconstruct a suspect’s web surfing history–and cached web pages, too–from a web proxy. Uncover DNS-tunneled traffic. Dissect the Operation Aurora exploit, caught on the wire. Throughout the text, step-by-step case studies guide you through the analysis of network-based evidence. You can download the evidence files from the authors’ web site (lmgsecurity.com), and follow along to gain hands-on experience."--From Publisher. 
<br/><br/><label>ISBN: </label>9780132564717 
<br/><br/><label>Subjects--Topical Terms: </label><br/>COMPUTER CRIMES -- INVESTIGATION.<br/>HACKERS.<br/>FORENSIC SCIENCES.<br/>COMPUTER CRIMES -- INVESTIGATION -- CASE STUDIES.
<br/><br/><label>LC Class. No.: </label>HV 8079.C65 .D38 2012