هلا

Computer Forensic Books


مجموعة كتب عن النظام الامني على جهاز الكمبيوتر الشخصي
البحث عن دلائل على الاختراق وتعريفها ومن ثم ايجاد حلول لمنع الاختراق مجددا

Computer forensics, still a rather new discipline in computer security, focuses on finding digital evidence after a computer security incident has occurred.

The goal of computer forensics is to do a structured investigation and find out exactly what happened on a digital system, and who was responsible for it.

There are essentially three phases for recovering evidence from a computer system or storage medium. Those phases are: (1) acquire, (2) analyze, and (3) report. Often, the results of a forensic investigation are used in criminal proceedings.

Given the fact that computer criminals always leave tracks, it's "just" a matter of finding these tracks. But this is not always easy. The evolution in computer technology goes on, computers and other communication systems become very complicated and better connected through all kinds of networks. At the same time, computer crime techniques become more sophisticated and better coordinated.

Broadly defined, computer crime is any criminal offense, activity or issue that involves computers.

There are two categories of computer crime. Criminal activity that involves using a computer to commit a crime, and criminal activity that has a computer as a target.

With these books you will learn how to investigate computer crime.

If there is enough interest, I will post some of the utilities mentioned in the books.

Enjoy





1. A Guide to Forensic Testimony: The Art and Practice of Presenting Testimony As An Expert Technical Witness


Addresses the specific needs of the IT expert witness. Focuses on how digital evidence and computer forensics are altering litigation. Your guide to the complicated forensic landscape that awaits the expert technical witness.

Information technology is an increasingly large factor in legal proceedings. In cases large and small, from the U.S. Government's antitrust suit against Microsoft Corporation, to civil lawsuits filed over the failure of a network, to criminal cases in which the authenticity of electronic evidence is questioned, the testimony of a technical expert is essential. But in order to be effective, an expert technical witness needs much more than an understanding of the technology in question.

A Guide to Forensic Testimony is the first book to address the specific needs of the IT expert witness. It will arm you with the tools you need to testify effectively. Inside you'll find everything from an overview of basic witness responsibilities and challenges to a deeper exploration of what produces successful technical testimony.

Written by a computer security authority who has served as a technical witness, and a trial attorney who focuses on how digital evidence and computer forensics are altering litigation, this book is your guide to the complicated forensic landscape that awaits the expert technical witness.




2. Anti-Hacker Tool Kit


This jam-packed reference explains how to use 100+ software tools for auditing systems on a network, auditing a network, and investigating incidents. Other topics include port scanners, vulnerability scanners, password crackers, and war dialers.





3. Computer and Intrusion Forensics

A comprehensive and broad introduction to computer and intrusion forensics, this practical work is designed to help you master the tools, techniques and underlying concepts you need to know, covering the areas of law enforcement, national security and the private sector.

The text presents case studies from around the world, and treats key emerging areas such as stegoforensics, image identification, authorship categorization, link discovery and data mining. It also covers the principles and processes for handling evidence from digital sources effectively and law enforcement considerations in dealing with computer-related crimes, as well as how the effectiveness of computer forensics procedures may be influenced by organizational security policy.

Text introduces computer and intrusion forensics, covering the areas of law enforcement, national security, and corporate fraud. Provides guidance on effectively handling evidence from digital sources, and law enforcement considerations in dealing with computer-related crimes. For professionals and students.


4. Computer Forensics: Computer Crime Scene Investigation , 2nd Edition

Book provides a complete overview of computer forensics from its definition to 'crime scene investigation,' seizure of data, determining the 'fingerprints' of the crime, and tracking down the criminal. Focuses on 'solving the crime' rather than information security. CD-ROM included.

No matter how secure computer users think their information is, chances are there are hackers who can access it. This comprehensive reference provides readers with all the information and software they need to track down these computer criminals.

The book's companion CD-ROM contains demos of the latest computer forensics software. The book contains a thorough overview of the subject from basic definitions to data recovery techniques to auditing methods to terrorist cyber-attacks. Numerous exercises, case studies, and vignettes of actual criminal methods enhance the topics under discussion, providing the reader with solutions to computer crime in the real world.

Selected topics include: Computer Forensics Fundamentals; Data Recovery; Evidence Collection and Data Seizure; Duplication and Preservation of Digital Evidence; Electronic Evidence Reconstructing Past Events; Deterrence through Attacker ID; Destruction of e-mail; Is the US Government Prepared for Information Warfare; The Dark World of the Cyber Underground; Protection against Random Terrorist Information Warfare Tactics; The Cyber Foot Print and Criminal Tracking; The Individual Exposed; Case Studies and Vignettes.





5. Cyber Crime Investigator's Field Guide, 2nd Edition

Many excellent hardware and software products exist to protect our data communications sytems, but security threats dictate that they must be further enhanced. Many laws implemented during the past 15 years have provided law enforcement with more teeth to take a bite out of cyber crime, but there is still a need for individuals who know how to investigate computer network security incidents. Organizations demand experts with both investigative talents and a technical knowledge of how cyberspace really works.

Cyber Crime Investigator's Field Guide, Second Edition provides the investigative framework that needs to be followed, along with information about how cyberspace works and the tools that reveal the who, what, when, where, why, and how in the investigation of cyber crime.

This volume offers a valuable Q&A by subject area, an extensive overview of recommended reference materials, and a detailed case study. Appendices highlight attack signatures, UNIX/Linux commands, Cisco PIX commands, port numbers targeted by trojan horses, and more.

Features: * Analyzes the use of the latest evidence collection and analysis tools. * Details how to use evidence collection and analysis tools including AccessData's Forensic Tool Kit, Guidance Software's EnCase 3 & 4, ILook Investigator, and a variety of tools from NTI. * Covers everything from what to do upon arrival at the scene until the investigation is complete, including chain of evidence.





6. Cyber Forensics: A Field Manual for Collecting, Examining, and Preserving Evidence of Computer Crimes

This is a comprehensive, highly usable, and clearly organized field manual of the issues, tools, and control techniques that audit, law enforcement, and infosecurity professionals need to know to successfully investigate illegal activities perpetrated through the use of information technology.

All of the forensic audit routines discussed throughout the book are included on a CD-ROM, which is included with the book. With the "ready-made" audit routines included in the appendix, the reader can immediately implement field audits. The step-by-step design allows the reader to gain comprehension of how the routines are developed, and how they can be applied in an audit/investigative situation.

This book is an excellent follow-on book to Computer Forensics: Incident Response Essentials by Kruse and Heiser, which introduces the fundamentals. This book goes much deeper and is more technical than the Kruse and Heise, therefore the ideal audience is practicing professionals who have prior experience in forensics and a wide range of hardware, software and network knowledge.





7. Digital Evidence and Computer Crime (2nd Edition)

Digital evidence--evidence that is stored on or transmitted by computers--can play a major role in a wide range of crimes, including homicide, rape, abduction, child abuse, solicitation of minors, child pornography, stalking, harassment, fraud, theft, drug trafficking, computer intrusions, espionage, and terrorism.

Though an increasing number of criminals are using computers and computer networks, few investigators are well-versed in the evidentiary, technical, and legal issues related to digital evidence. As a result, digital evidence is often overlooked, collected incorrectly, and analyzed ineffectively. The aim of this hands-on resource is to educate students and professionals in the law enforcement, forensic science, computer security, and legal communities about digital evidence and computer crime.

This work explains how computers and networks function, how they can be involved in crimes, and how they can be used as a source of evidence. As well as gaining a practical understanding of how computers and networks function and how they can be used as evidence of a crime, readers will learn about relevant legal issues and will be introduced to deductive criminal profiling, a systematic approach to focusing an investigation and understanding criminal motivations.
This book draws from four fields: Law, Computer Science, Forensic Science, and Behavioral Evidence Analysis. The Law provides the framework within which all of the concepts of this book fit. Computer Science provides the technical details that are necessary to understand specific aspects of digital evidence. Forensic Science provides a general approach to analyzing any form of digital evidence. Behavioral Evidence Analysis provides a systematized method of synthesizing the specific technical knowledge and general scientific methods to gain a better understanding of criminal behavior and motivation.

The Forensic Science concepts described early on in relation to a single computer are carried through to each layer of the Internet. Seeing concepts from Forensic Science applied in a variety of contexts will help the reader generalize the systematic approach to processing and analyzing digital evidence. Once generalized, this systematic approach can be applied to situations not specifically discussed in this text. In place of the CD-ROM in the first edition of this book, an interactive Web site (www.disclosedigital.com) provides practical exercises based on actual cases to demonstrate key aspects of investigating computer related crimes and to help the reader apply the concepts in this book to his/her own investigations. This Web site epitomizes a general educational model that others can replicate or borrow from to create inexpensive, educational resources to assist investigators.



8. File System Forensic Analysis

Most digital forensics evidence is stored within the computer's file system, but working with file systems is the most technically challenging aspect of forensic analysis. Now, world-renowned expert Brian Carrier has written the definitive reference and "cookbook" for everyone who must perform reliable, legally defensible file system analysis.

Carrier begins with an authoritative, comprehensive overview of contemporary file systems and disk layouts: crucial information for discovering hidden evidence, recovering deleted data, and validating your tools. Next, he shows how to use today's most valuable open source file system analysis tools - including tools he personally developed. Carrier's techniques address six leading file systems found on today's Windows, UNIX, and Linux systems: FAT, NTFS, Ext2, Ext3, UFS1, and UFS2.

Coverage includes: * Preserving the digital crime scene and duplicating hard disks for "dead analysis"; * Acquiring data safely without diminishing its value as evidence; * Identifying hidden data on a disk's Host Protected Area (HPA); * Reading source data: direct versus BIOS access, dead versus live acquisition, error handling, and more; * Analyzing contents of both PC-based and server-based partitions; * Working with systems containing multiple disk volumes; * Key concepts, data structures, and specific techniques for analyzing Windows, UNIX, and Linux file systems; * Using The Sleuth Kit (TSK), Autopsy Forensic Browser, and related open source tools.

When it comes to file system analysis, no other book offers this much detail - or this much specific, usable help. Whether you're a digital forensics specialist, incident response team member, law enforcement officer, corporate security specialist, or auditor, you'll rely on it constantly.


9. Incident Response and Computer Forensics, Second Edition


Written by FBI insiders, this updated best-seller offers a look at the legal, procedural, and technical steps of incident response and computer forensics. Including new chapters on forensic analysis and remediation, and real-world case studies, this revealing book shows how to counteract and conquer today's hack attacks.

Guide to computer crime investigation, showing how to plan and prepare for all stages of an investigation. Updated with the latest techniques, including collecting live data and investigating Windows and UNIX systems, forensic duplication, emergency network and security monitoring, and corporate evidence handling procedures.




10. Incident Response: Computer Forensics Toolkit


Your in-depth guide to detecting network breaches, uncovering evidence, and preventing future attacks. Whether it's from malicious code sent through an e-mail or an unauthorized user accessing company files, your network is vulnerable to attack. Your response to such incidents is critical.

With this comprehensive guide, Douglas Schweitzer arms you with the tools to reveal a security breach, gather evidence to report the crime, and conduct audits to prevent future attacks. He also provides you with a firm understanding of the methodologies for incident response and computer forensics, Federal Computer Crime law information and evidence requirements, legal issues, and how to work with law enforcement.

Guide provides the tools needed to reveal a security breach, gather evidence to report the crime, and conduct audits to prevent future attacks. Provides an understanding of the methodologies for incident response and computer forensics, Federal Computer Crime law investigation, legal issues, and how to work with law enforcement.

CD-ROM includes: Helpful tools to capture and protect forensic data; search volumes, drives, and servers for evidence; and rebuild systems quickly after evidence has been obtained. Valuable checklists developed by the author for all aspects of incident response and handling .




11. Investigating Child Exploitation and Pornography: The Internet, Law and Forensic Science

Crime scenes associated with child sexual exploitation and trafficking in child pornography were once limited to physical locations such as school playgrounds, church vestibules, trusted neighbors' homes, camping trips and seedy darkly lit back rooms of adult bookstores. The explosion of Internet use has created a virtual hunting ground for sexual predators and has fueled a brisk, multi-billion dollar trade in the associated illicit material. Approximately half of the caseload in computer crimes units involves the computer assisted sexual exploitation of children.

Despite the scale of this problem, or perhaps because of it, there are no published resources that bring together the complex mingling of disciplines and expertise required to put together a computer assisted child exploitation case.

This work fills this void, providing police, prosecutors and forensic examiners with the historical, legal, technical, and social background for the laws prohibiting child exploitation, in particular, child pornography. The book will become an indispensable resource for those involved in the investigation, prosecution and study of computer-assisted child sexual exploitation.

The book provides a history of child exploitation cases and studies, outlining the roles of technology in this type of crime and the evidence they can contain, and documenting new research performed by the authors. It details how successful undercover Internet operations are conducted, how the associated evidence is collected, and how to use the evidence to locate and apprehend the offender. The heart of this work is a legal section, detailing all of the legal issus that arise in Internet child exploitation cases. A forensic examination section presents evidentiary issues from a technical perspective and describes how to conduct a forensic examination of digital evidence gathered in the investigative and probative stages of a child exploitation case.

Citations to related documents are provided for readers who want to learn more about certain issues. Actual case examples from computer assisted child exploitation cases are explored, at all times protecting the privacy of the victims while providing enough detail to educate the reader.

In addition to providing guidance on the technical and legal aspects of child exploitation investigations, this work identifies and analyzes trends in this type of crime and helps readers understand the similarities and differences between child predators who take to the Internet and predators who do not. Data from the thirty Internet Crimes Against Children (ICAC) Task Forces are compiled and reported to provide a deeper understanding of the types of cases, types of offenders and the level of danger they pose to themselves, their victims, and investigating officers. Also, sex offender data from the Offices of Attorneys General in the United States and similar offices in foreign countries are gathered to increase the study sample size, establish controls, and expand the scope of the research to outside of the United States.

Features: * The first comprehensive title in this subject area; * It will use real cases and examples of criminal behavior and the means to detect it; * Provides guidelines for developing a Field Manual and a Checklist to supplement the investigation and legal process; * Establishes a reliable system and legal, procedural-backed protocol by which to conduct an online sexual investigation and collect evidence.



12. Investigating Computer-Related Crime

Offers valuable information on using the forensic utilities for preserving evidence and searching for hidden information in the process of devising solutions to computer related crime.

Written by an experienced information security specialist, Investigating Computer-Related Crime is tailored to the needs of corporate information professionals and investigators. It gives a step-by-step approach to understanding and investigating security problems, and offers the technical information, legal information, and computer forensic techniques you need to preserve the security of your company's information.

Investigating Computer-Related Crime discusses the nature of cyber crime, its impact in the 21st century, its investigation and the difficulties encountered by both public law enforcement officials and private investigators. By detailing an investigation and providing helpful case studies, this book offers insights into collecting and preserving evidence, interrogating suspects and witnesses, handling the crime in progress, and issues in involving the authorities.

The seasoned author offers valuable, firsthand information on using the forensic utilities for preserving evidence and searching for hidden information, to help you devise solutions to the computer-related crimes that threaten the well-being of your company.



13. Investigator's Guide to Steganography

Investigators within the law enforcement and cyber forensics communities are generally aware of the concept of steganography, but their levels of expertise vary dramatically depending upon the incidents and cases that they have been exposed to. Now there is a book that balances the playing field in terms of awareness, and serves as a valuable reference source for the tools and techniques of steganography.

The Investigator's Guide to Steganography provides a comprehensive look at this unique form of hidden communication from its earliest beginnings to its most modern uses.

The book begins by exploring the past, providing valuable insight into how this method of communication began and evolved from ancient times to the present day. It continues with an in-depth look at the workings of digital steganography and watermarking methods, available tools on the Internet, and a review of companies who are providing cutting edge steganography and watermarking services. The third section builds on the first two by outlining and discussing real world uses of steganography from the business and entertainment to national security and terrorism.

The book concludes by reviewing steganography detection methods and what can be expected in the future. It is an informative and entertaining resource that effectively communicates a general understanding of this complex field.



14. Knoppix Hacks


Knoppix is a portable Linux distribution with a collection of hundreds of programs and utilities--a veritable Swiss Army knife in CD form. This practical and flexible Linux distribution runs on the fly from a single CD with no need to install anything to your hard drive. Knoppix's excellent hardware detection, collection of programs, and ease of use help explain why Knoppix is radically changing the face of Linux.

Though Knoppix is the most popular live CD Linux distribution available, until now there have been no books on the topic. A weighty theoretical tome or a book for dummies won't do--the perfect Knoppix book, like Knoppix itself, must be as useful and clever as a Swiss Army knife. Clearly, Knoppix calls for an O'Reilly Hacks book.

Knoppix Hacks is a collection of one hundred industrial-strength hacks for new Linux users, power users, and system administers using--or considering using--the Knoppix Live CD. These tips and tools show how to use the enormous amount of software on this CD to troubleshoot, repair, upgrade, disinfect, and generally be productive without Windows.

With Knoppix you can: * Test drive a Linux desktop without the need to install Linux; * Troubleshoot and repair Linux and Windows systems; * Create a thin client network with just one CD; * Replace a web server or firewall in an emergency; * Perform a security audit on your entire network; * Virus scan a Windows computer from the safety of Linux; * Customize Knoppix for personal or business use.

Easily install the popular Debian GNU/Linux distribution with all of your hardware detected and configured.

Knoppix Hacks provides ingenious fixes, clever customizations, and time and resource-saving tips. If you want more than the average Knoppix user, this invaluable book is a must-have.



15.Privacy Protection and Computer Forensics, 2nd Edition


This thoroughly revised edition of an Artech House bestseller goes far beyond the typical computer forensics books on the market, emphasizing how to protect one's privacy from data theft and hostile computer forensics.

The second edition has been updated to offer more detailed how-to guidance on protecting the confidentiality of data stored on computers, and specific information on the vulnerabilities of commonly used ancillary computing devices, such as PDAs, cellular telephones, smart cards, GPS devices, telephone calling cards, fax machines, and photocopiers.

This cutting-edge book helps you identify the specific areas where sensitive and potentially incriminating data is hiding in personal computers and consumer electronics, and explains how to go about truly removing this data because mere "deletion" or even "overwriting" does not accomplish this. You get a systematic process for installing operating systems and application software that will help to minimize the possibility of security compromises, and numerous specific steps that need to be taken to prevent the hostile exploitation of one's computer.

This unique resource provides a method for ensuring that computers that are connected to the Internet are protected from malicious mobile code (code that can allow a remote hacker to read, remove, damage, or even add data to one's computer) the new fashion of "adware/spyware", and "Web bugs."

Moreover, you learn how to detect whether advanced investigative tools, such as keystroke storing and relaying hardware and software, are in use in a computer; you also learn of commercially available capabilities for intercepting radio signals unintentionally radiated by a computer.

Other critical topics include the pitfalls of encryption and how to use it effectively, the practical aspects of online anonymity, and the current legal issues that pertain to the use of computers.



16. Windows Forensics And Incident Recovery

The first book completely devoted to this important part of security in a Windows environment.

As long as networks of Microsoft Windows systems are managed, administered, and used by people, security incidents will occur. Windows systems are highly pervasive throughout the entire computing infrastructure, from home and school systems, to high-end e-commerce sites.

In contrast to this pervasiveness, information regarding conducting effective incident response and forensic audit activities on Windows systems is limited. While there are many security books available, none focus specifically on Windows security. There are also resources available online, but they are scattered and often too general.

This book is a compilation of all the information currently available on this subject. It is for anyone who manages or administers Windows systems (including home users) and needs to know how to react when they suspect that an incident has occurred. It guides the reader through information, tools, and techniques that are required to conduct incident response or a live forensics audit activities.

By providing the necessary background for understanding how incidents occur and how data can be hidden on compromised systems, the reader will have a better understanding of the "whys" and "hows" of incident response and forensic audit activities.




17. Scene of the Cybercrime: Computer Forensics Handbook

Fight Back. Learn to track down criminals in cyberspace and bring them to justice! Step-by-step instructions for collecting and preserving digital evidence. Understand the criminal mindset and know the basics of gathering evidence from a law enforcement point of view. Understand the role of IT professionals securing computers and networks to fight against cybercrimes.

This book is a bridge between two distinct cultures; that of IT professionals responsible for building systems that prevent cybercrime, and law enforcement officials responsible for investigating and prosecuting those crimes.

It introduces IT professionals to the highly structured world of law enforcement, where rules of evidence must be followed closely and crime scenes must not be contaminated. It provides law enforcement officers with an understanding of the technical aspects of cybercrime and of how technology can be used to help solve crimes that have been committed.

Provides Step-by-Step instructions for collecting and preserving digital evidence.


18. The Law Enforcement and Forensic Examiner:Introduction to Linux:A Beginner's Guide


This purpose of this book is to provide an introduction to the GNU/Linux (Linux) operating system as a forensic tool for computer crime investigators.Tools available to investigators for forensic analysis are presented with practical exercises. This is by no means meant to be the definitive “how-to” on forensic methods using Linux. Rather, it is a starting point for those who are interested in pursuing the self-education needed to become proficient in the use of Linux as an investigative tool.Not all of the
commands offered here will work in all situations, but by describing the basic commands available to an investigator I hope to “start the ball rolling”.



19. Hiding in Plain Sight : Steganography and the Art of Covert Communication

Steganography, has generally received a bad rap from the crypto community which has relegated it to the "security through obscurity" heap. However, there is a place for all things and sometimes times change so that another look is in order. The idea of hiding things has always had a value, even going back in history a millennium or more. Encryption is better for secret communications, but that does not mean that stego should be completely ignored. This is not a zero sum game, but rather the appropriate tool for the given situation. One also must consider that even if you think something is not worth using, someone else might use it, so you should understand it just for self-defense.
Over the past decade interest has picked up significantly resulting in more use, more tools and more improvements. The books from five years ago presented less sophisticated techniques than Hiding in Plain Sight. Some of the tools available in the mid 90s are still around though, better than ever. Hiding has a companion CD with a collection of tools so you can started right away. In additions there is an abundance of source code for some of the tools in case you want see how it is all done.
This is an accessible, introductory level book with stories from the field to illustrate points along the way. There are color images for comparison between before and after a stego application on the CD, but unfortunately color is lacking in book itself.
The demand for digital watermarking for images and music has given a boost to stego, since the techniques and the principles are the same. And digital watermarking suffers from the same shortcomings of steganography. For example, Cole shows how the distribution of bits can give away the hidden message within an image. Music files have become notorious for containing something other than music, often blamed on the RIAA and friends to discourage the sharing of the files. Scanning of these files could be stego related topic that deserves a little attention.
Steganography requires one to know about file formats, as well as compression, in spite of the ease that some of the tools provide. It is helpful when folks understand details of technology because they can make informed judgments. For example, when the stories of terrorists using images to pass information around the world, there was a bit of a media flurry. Some stego experts look at a large number of random images from the net to find nothing. Cole states that he has done something similar with the opposite results. Perhaps terrorists are not using it, but maybe some others are. The more of us who learn about it, the better we will be able to decide what is happening.
"Hiding in Plain Sight" is a good introduction to steganography. It is clearly written with extras and a low price, so it is recommended.


20. Computer Forensics JumpStart

This book details how someone with basic computer skills could investigate a workstation to see if anything malicious has been occurring.
The authors do a splendid job of offering real work examples to show the damage of inappropriate access and use by certain individuals. The use of the Internet and emails as a method of destruction is particularly alarming. Criminals and people with a penchant for malice are using emerging and established forms of communication to pervert the original intent of creators. The examples give snap shots into the complexity of the world of 21st century crimes.
The book is does go into detail about fraud on web based commerce. Thing such as ebay and bargain shopping web sites, seem noticeably missed in the context of crimes committed. The interesting example they use is the theft of website design from one website. Criminals could then use such designs to their own professional credit. It proceeds to tell the audience how to retrace the computer footprints to determine if designs were stolen.
It surveys overall Internet issues such as domain name services and email servers. The subject matter is daunting to say in the least, but the authors keep an individual grounded in the fact they are a beginner. It gives the feel of becoming a modern Dick Tracy or Sam Spade. The section also covers encrypted passwords, which are becoming more commonplace due to online commerce.
My main criticism would be the overall simplicity the authors present when entering such a field. It almost smacks of snake oil salesmen bartering cure alls. The work seems admirable but a very vast field, which encompasses everything from the intellectual property rights of web designers to human resource managers keeping tabs on company employees. Other than those points, I would say this is a must read for anyone who plans to enter businesses, which conduct online based exchanges of information or capital. It was a real experience to discover the depth of emerging criminal conduct with technology.


21.Internet Forensics

Unlike some of the internet security books I've read and reviewed, this one is actually understandable by those who aren't full-time network administration geeks. Jones examines the subject of tracking down computer crime (phishing, spam, etc.) by using forensic techniques to narrow down potential culprits. This isn't to say that there's a "follow these steps and nail the spammer" recipe that can be applied in all cases. Too many things can be forged, and spammers (in some cases) are pretty adept at hiding their tracks. But by learning how to read email headers, domain registrations, and patterns, you can learn more than you might expect. The nice thing about this book is that the information is explained in a clear fashion that doesn't rely on years of experience to follow. His explanation of mail headers and how to interpret them might be the first time I've ever actually understood what was going on. He also switches the view on some subjects (like web browsers) to help you understand how to better hide your own tracks to prevent others from finding out information about you. And if you're trying to track down someone who's abusing your site, hiding your own tracks might be critical in not causing him (or her) to bolt...

Important information, and extremely practical. I guarantee you'll walk away with a couple things immediately that you can use, and over the long haul the book will more than pay for itself...

التحميل :

http://rapidshare.de/files/12006000/CF.part1.rar 
http://rapidshare.de/files/12013653/CF.part2.rar 
http://rapidshare.de/files/12020654/CF.part3.rar 
http://rapidshare.de/files/12028125/CF.part4.rar 
http://rapidshare.de/files/12036029/CF.part5.rar 
http://rapidshare.de/files/12043350/CF.part6.rar 
http://rapidshare.de/files/12076691/CF.part7.rar

تحياتي