Author(s) Name:  Sherri Davidoff, Jonathan Ham
This book is a comprehensive guide to learn to recognize hackers tracks and uncover network-based evidence, carve suspicious email attachments from packet captures. Use flow records to track an intruder as he pivots through the network. Analyze a real-world wireless encryption-cracking attack (and then crack the key yourself).
On the Internet, every action leaves a mark–in routers, firewalls, web proxies, and within network traffic itself. When a hacker breaks into a bank, or an insider smuggles secrets to a competitor, evidence of the crime is always left behind.
Throughout the text, step-by-step case studies guide you through the analysis of network-based evidence. You can download the evidence files from the authors web site (lmgsecurity.com), and follow along to gain hands-on experience.
Table of Contents
Publisher:  Prentice Hall
Year of Publication:  2012
Book Link:  Home Page Url