TY  - BOOK
AU  - Carvey,Harlan A.
TI  - Windows registry forensics: advanced digital forensic analysis of the Windows registry 
SN  - 9780128033357
AV  - HV8079.C65 
U1  - 364.16/8 23
PY  - 2016///
CY  - Cambridge, MA
PB  - Syngress is an imprint of Elsevier
KW  - Microsoft Windows (Computer file)
KW  - fast
KW  - Operating systems (Computers)
KW  - Computer crimes
KW  - Investigation
KW  - Methodology
KW  - Computer networks
KW  - Security measures
KW  - Computer security
KW  - Component software
KW  - SOCIAL SCIENCE
KW  - Criminology
KW  - bisacsh
KW  - Electronic books
N1  - Includes index
N2  - Harlan Carvey brings readers an advanced book on Windows Registry. The first book of its kind EVER -- Windows Registry Forensics provides the background of the Registry to help develop an understanding of the binary structure of Registry hive files. Approaches to live response and analysis are included, and tools and techniques for postmortem analysis are discussed at length. Tools and techniques will be presented that take the analyst beyond the current use of viewers and into real analysis of data contained in the Registry. Named a 2011 Best Digital Forens
UR  - http://www.sciencedirect.com/science/book/9780128032916
ER  -