SQL Server Forensic Analysis
暫譯: SQL Server 取證分析

Kevvie Fowler

SQL Server Forensic Analysis
  • 出版商: Addison Wesley
  • 出版日期: 2008-12-26
  • 售價: $1,730
  • 貴賓價: 9.5$1,644
  • 語言: 英文
  • 頁數: 512
  • 裝訂: Paperback
  • ISBN: 0321544366
  • ISBN-13: 9780321544360
  • 相關分類: MSSQLSQL

    • 立即出貨 (庫存 < 4)

買這商品的人也買了...

相關主題

商品描述

“What Kevvie Fowler has done here is truly amazing: He has defined, established, and documented SQL server forensic methods and techniques, exposing readers to an entirely new area of forensics along the way. This fantastic book is a much needed and incredible contribution to the incident response and forensic communities.”

—Curtis W. Rose, founder of Curtis W. Rose and Associates and coauthor of Real Digital Forensics

 

The Authoritative, Step-by-Step Guide to Investigating SQL Server Database Intrusions

 

Many forensics investigations lead to the discovery that an SQL Server database might have been breached. If investigators cannot assess and qualify the scope of an intrusion, they may be forced to report it publicly–a disclosure that is painful for companies and customers alike. There is only one way to avoid this problem: Master the specific skills needed to fully investigate SQL Server intrusions.

 

In SQL Server Forensic Analysis, author Kevvie Fowler shows how to collect and preserve database artifacts safely and non-disruptively; analyze them to confirm or rule out database intrusions; and retrace the actions of an intruder within a database server. A chapter-length case study reinforces Fowler’s techniques as he guides you through a real-world investigation from start to finish.

 

The techniques described in SQL Server Forensic Analysis can be used both to identify unauthorized data access and modifications and to gather the information needed to recover from an intrusion by restoring the pre-incident database state.

 

Coverage includes

  • Determining whether data was actually compromised during a database intrusion and, if so, which data
  • Real-world forensic techniques that can be applied on all SQL Server instances, including those with default logging
  • Identifying, extracting, and analyzing database evidence from both published and unpublished areas of SQL Server
  • Building a complete SQL Server incident response toolkit
  • Detecting and circumventing SQL Server rootkits
  • Identifying and recovering previously deleted database data using native SQL Server commands

 

SQL Server Forensic Analysis is the first book of its kind to focus on the unique area of SQL Server incident response and forensics. Whether you’re a digital forensics specialist, incident response team member, law enforcement officer, corporate security specialist, auditor, or database professional, you’ll find this book an indispensable resource.

商品描述(中文翻譯)

“Kevvie Fowler 在這裡所做的事情真是令人驚嘆:他定義、建立並記錄了 SQL Server 的取證方法和技術,讓讀者接觸到一個全新的取證領域。這本精彩的書籍對於事件響應和取證社群來說,是一項急需且不可思議的貢獻。”
—Curtis W. Rose,Curtis W. Rose and Associates 創辦人及《Real Digital Forensics》的合著者

《調查 SQL Server 資料庫入侵的權威逐步指南》

許多取證調查最終會發現 SQL Server 資料庫可能已被入侵。如果調查人員無法評估和確定入侵的範圍,他們可能被迫公開報告這一事件——這對公司和客戶來說都是一種痛苦的披露。避免這個問題的唯一方法是:掌握完全調查 SQL Server 入侵所需的特定技能。

在《SQL Server 取證分析》中,作者 Kevvie Fowler 展示了如何安全且不干擾地收集和保存資料庫文物;分析這些文物以確認或排除資料庫入侵;並追溯入侵者在資料庫伺服器中的行為。一個長度為一章的案例研究強化了 Fowler 的技術,帶領您從頭到尾完成一個真實世界的調查。

《SQL Server 取證分析》中描述的技術可用於識別未經授權的資料訪問和修改,並收集恢復入侵所需的信息,通過恢復事件前的資料庫狀態來實現。

內容涵蓋:
- 確定在資料庫入侵期間資料是否實際受到損害,如果是,哪些資料受到影響
- 可應用於所有 SQL Server 實例的真實取證技術,包括那些具有預設日誌記錄的實例
- 從 SQL Server 的已發佈和未發佈區域識別、提取和分析資料庫證據
- 建立完整的 SQL Server 事件響應工具包
- 偵測和繞過 SQL Server 根套件
- 使用原生 SQL Server 命令識別和恢復先前刪除的資料庫資料

《SQL Server 取證分析》是首本專注於 SQL Server 事件響應和取證獨特領域的書籍。無論您是數位取證專家、事件響應團隊成員、執法官員、企業安全專家、審計員或資料庫專業人士,您都會發現這本書是不可或缺的資源。

類似商品