What's on the CD
The accompanying CD-ROM contains incident response and forensics toolkit code developed by the author, sample network packet captures, as well as data collected from compromised systems using the Forensic Server Project.
To view the contents of the CD-ROM, simply open the CD-ROM in Windows Explorer. The CD-ROM can be accessed from any system running Windows NT or better.
The author developed the Perl scripts on the CD-ROM. In order to use the Perl scripts, all you need to do is install Perl in accordance with Appendix A, Installing Perl on Windows, and then copy the Perl scripts (files ending with the .pl extension) from the CD-ROM to the \Perl directory of your Perl installation. Follow the instructions in the book for running ...
Get Windows Forensics and Incident Recovery now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
