8 The Digital Forensics and Incident Response Process

So far, we have mostly looked at cloud-native tools for investigators to review logs and perform analysis. In the subsequent chapters, we will be looking at some of the third-party tools that complement cloud-native tools – tools that can aid in collecting and analyzing forensic artifacts, marrying cloud-native and third-party toolsets every investigator should be familiar with before embarking upon a cloud forensic case. Specifically, this chapter will revisit the basics of digital forensics and the incident response process. We will also identify some core concepts and introduce tools we have typically used in cloud forensic cases.

In this chapter, we will learn about the following:

Get Cloud Forensics Demystified now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Cloud Forensics Demystified by Ganesh Ramakrishnan, Mansoor Haqanee

8

The Digital Forensics and Incident Response Process

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly