CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002), 2nd Edition

CHAPTER 18 Utilize Basic Digital Forensics Techniques

In this chapter you will learn:

• How digital forensics is related to incident response

• Basic techniques for conducting forensic analyses

• Familiarity with a variety of forensic utilities

• How to assemble a forensics toolkit

Condemnation without investigation is the height of ignorance.

—Albert Einstein

Digital forensics is the process of collecting and analyzing data to determine whether and how an incident occurred. The word forensics can be defined as an argumentative exercise, so it makes sense that a digital forensic analyst’s job is to build compelling, facts-based arguments that explain an incident. The digital forensic analyst answers the questions what, where, when, ...

Get CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002), 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002), 2nd Edition by Brent Chapman, Fernando Maymi

CHAPTER 18

Utilize Basic Digital Forensics Techniques

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly