TY - BOOK ID - 8502800 TI - Executing Windows command line investigations AU - Hosmer, Chet AU - Bartolomie, Joshua AU - Pelli, Rosanne PY - 2016 SN - 0128092718 0128092688 9780128092712 9780128092682 PB - Cambridge, MA Syngress is an imprint of Elsevier DB - UniCat KW - Command languages (Computer science) KW - Operating systems (Computers) KW - Microsoft Windows (Computer file) KW - Computer operating systems KW - Computers KW - Disk operating systems KW - Systems software KW - JCLs (Computer science) KW - Job control languages (Computer science) KW - Shell languages (Computer science) KW - Programming languages (Electronic computers) KW - Operating systems KW - Windows (Computer file) KW - Chicago (Computer file) KW - Microsoft Windows 95 KW - Windows 95 KW - Microsoft Windows CE KW - Windows CE KW - Pegasus (Computer file) KW - Windows for workgroups KW - Microsoft Windows for workgroups KW - Windows 98 KW - Microsoft Windows 98 KW - Windows 2000 professional KW - Windows 2000 KW - Microsoft Windows 2000 KW - Microsoft Windows Me millennium edition KW - Windows Me KW - Microsoft Windows XP (Computer file) KW - Windows XP KW - Microsoft Windows Vista KW - Windows Vista KW - Microsoft Windows 7 KW - Windows 7 KW - Windows 8 KW - Windows 10 UR - https://www.unicat.be/uniCat?func=search&query=sysid:8502800 AB - The book Executing Windows Command Line Investigations targets the needs of cyber security practitioners who focus on digital forensics and incident response. These are the individuals who are ultimately responsible for executing critical tasks such as incident response; forensic analysis and triage; damage assessments; espionage or other criminal investigations; malware analysis; and responding to human resource violations. The authors lead readers through the importance of Windows CLI, as well as optimal configuration and usage. Readers will then learn the importance of maintaining evidentiary integrity, evidence volatility, and gain appropriate insight into methodologies that limit the potential of inadvertently destroying or otherwise altering evidence. Next, readers will be given an overview on how to use the proprietary software that accompanies the book as a download from the companion website. This software, called Proactive Incident Response Command Shell (PIRCS), developed by Harris Corporation provides an interface similar to that of a Windows CLI that automates evidentiary chain of custody and reduces human error and documentation gaps during incident response. Includes a free download of the Proactive Incident Response Command Shell (PIRCS) software Learn about the technical details of Windows CLI so you can directly manage every aspect of incident response evidence acquisition and triage, while maintaining evidentiary integrity ER -