CHFI Computer Hacking Forensic Investigator Certification All-in-One Exam Guide

CHAPTER 8 Forensic Investigations

In this chapter, you will learn how to

• Install and configure Forensic Toolkit and EnCase

• Create a case and add the data

• Analyze the data

• Generate the report

We’ve talked about individual analysis tools in a previous chapter. An alternative to creating your own forensic software toolkit is to use a software distribution specifically configured for forensic investigations, or to use a particular forensic software program.

A forensic software distribution combines a collection of programs with a host operating system. Many of these distributions are Linux based, and can be either installed to a hard disk or run “live” from a bootable medium such as a CD-ROM or a universal ...

Get CHFI Computer Hacking Forensic Investigator Certification All-in-One Exam Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CHFI Computer Hacking Forensic Investigator Certification All-in-One Exam Guide by Charles L. Brooks

CHAPTER 8

Forensic Investigations

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly