Malware Forensic Field Guides: Tool Box 
Malware Forensic Field Guides

 

 




Welcome
Welcome to the Malware Forensics Field Guide web site, which serves as the companion resource for the Malware Forensics Field Guide for Windows Systems and Malware Forensics Field Guide for Linux Systems .  Recall that in the Malware Forensic Field Guides, the Tool Box icon (—a wrench and hammer) is used to notify the reader that additional tool information is available in the Tool Box appendix at the end of each chapter, and on this companion Web site.

This site endeavors to be a "living document," that supplements the respective Tool Box appendices in the Malware Forensics Field Guides by providing updates about new and relevant tools for Malware Forensics practitioners. Like the format and structure of the Malware Forensics Field Guides, tools are listed by corresponding chapter and section.

We are hopeful that you, the reader, will collaborate with us and provide suggestions of relevant tools through the Contact Us portal.  In this way, the site can also serve as a platform for members of the information security/digital forensics community to collectively contribute toward a convenient malware forensics tool reference.
Electronic version of the Field Notes and Field Interview Questions

We know that many readers would like to have an electronic copy of the chapter Field Notes and Field Interview Questions.  Syngress wants to make these documents available to the reader and is currently establishing a platform and process to distribute them.  Please use the Field Notes Portal on this site to notify Syngress that you are interested in obtaining electronic copies of these documents.


NEW RELEASE!  Linux Malware Incident Response: A Practitioner's Guide to Forensic Collection and Examination of Volatile Data

We are pleased to announce the release of Linux Malware Incident Response: A Practitioner's Guide to Forensic Collection and Examination of Volatile Data (an Excerpt from the upcoming Malware Forensics Field Guide for Linux Systems).  This book is in the Syngress "First Look" series, which provides readers with early chapters from new Syngress books in development. For more information on the Syngress First Looks series, please visit the First Looks web site.