Category: book review

WFA/4e

I’m duplicating this post from another blog because this will probably be the coolest book to come out this year in digital forensics and is a must-have.  The short version as to why the book is a must-have is “duh, it’s Harlan’s latest book…and Windows 8…”

I’ll wait to give an “official” review of Harlan’s book (Windows Forensic Analysis Toolkit, Fourth Edition: Advanced Analysis Techniques for Windows 8) only to give others the chance to read it once it becomes available.  But…I’ll say that based on my early reading as a tech editor, this is a book that ranks for me in as much anticipation as a new Tom Clancy novel being released.

fourth editionI also think this is one of those books that if not pre-ordered, will have you waiting until it is reprinted due to being over-ordered.  The X-Ways Practitioner’s Guide was one of those books too, where late-comers had to wait weeks for the second printing.  This book is no different, because just about all of the neat things in the book show just how much Harlan has discovered in some very neat areas of Windows 8.

One thing I learned about ordering books from Amazon, is that Amazon will pretty much match the lowest price found elsewhere.  I also learned that with a pre-ordered book, you can cancel before the book is printed if you find a lower price somewhere else.  The point is, pre-order the book or you may be waiting a month after everyone else gets their copy…it comes out in April ’14 and I’d expect the second printing to be needed in April ’14…

Cloud Storage Forensics

Image
http://www.amazon.com

I have a detailed review of this book at http://winfe.wordpress.com.  In short, it’s a really good book and of all tools to choose for the research in the book, the authors picked X-Ways Forensics.  But then, that should not come as any surprise.

There’s still time to ask Santa to put this in your stocking…

Cool update to the XWFIM, Portable Install

Eric is at it again.  This time with a pretty cool update to the X-Ways Forensics Install Manager (v0.0.7.0).  The update to the XWFIM now includes an option to create a portable install to external media.   Page 13 of the Practitioner’s Guide to X-Ways Forensics details how to do this manually, but XWFIM does it for you with a few clicks.

portable
Easy enough

 

drive letter
Cool! Notepad++ and Volume Label renamed.

 

result
Bam! Done.

 

Another cool little feature is that the XWFIM creates all the case folders for you in the process of the portable install.  Neat.

folder
I like this. Saves a few keystrokes and I’m all about saving keystrokes.

 

Don’t forget, if you liked the Practitioner’s Guide to X-Ways Forensics, write a review on Amazon to let us know how you liked it (or if you didn’t…).  And if you use XWF and didn’t buy the guide…you are missing out on more than a few tips and tricks that will save you dozens of keystrokes.

XWF Guide as #2 best seller (in Forensic Science) on Amazon

We’ve gotten quite a bit of personal email feedback on the XWF Guide, and in one category at Amazon (Forensic Science), the XWF Guide ranks at #2.

There’s been only one Amazon review, so let us know if you found the book helpful with a review on Amazon.  We will be very grateful for nice 🙂 words, but we’ll take any criticisms as well 😦no 2

XWF Guide Review by Ken Pryor

Ken Pryor wrote a very in-depth review of the XWF Guide.   Ken has a very informative DF blog and we’re glad to have been mentioned in such detail.  Thank you Ken for the nice review.

Check out Ken’s review at:  http://digiforensics.blogspot.com/2013/09/book-review-x-ways-forensics.html

And of course, here is a direct link to order the XWF Guide…

Xways-CoverFrom Amazon

%d bloggers like this: