Skip to Main Content
Cyber Forensics, 2nd Edition
book

Cyber Forensics, 2nd Edition

by Albert Marcella Jr., Doug Menendez
December 2010
Intermediate to advanced content levelIntermediate to advanced
528 pages
18h 51m
English
Auerbach Publications
Content preview from Cyber Forensics, 2nd Edition
Concealment Techniques 109
Knowledge of this operation is important for a cyber forensic investigator to consider when
attempting to determine (a) the validity of compiled code under review, (b) that no unauthorized
access to the API functions had been attempted, and (c) any action aimed at manipulating
electronic, system evidence.
Usually, a Hook system is composed at least two parts—a Hook Server and a Driver.  e
Hook Server is responsible for injecting the Driver into targeted processes at the appropriate
moment. It also administers the driver and optionally can receive information from the Driver
about its activities whereas the Driver module that performs the actual interception [36].
Hooking is done by altering the Import Addres ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Digital Forensics and Incident Response - Second Edition

Digital Forensics and Incident Response - Second Edition

Gerard Johansen
Digital Forensics

Digital Forensics

John Sammons
Cyber Security and Digital Forensics

Cyber Security and Digital Forensics

Mangesh M. Ghonge, Sabyasachi Pramanik, Ramchandra Mangrulkar, Dac-Nhuong Le

Publisher Resources

ISBN: 9781439848234