Best Windows Registry
The first book of its kind EVER -- Windows Registry Forensics provides the background of the Registry to help develop an understanding of the binary structure of Registry hive files. Tools and techniques will be presented that take the analyst beyond the current use of viewers and into real analysis of data contained in the Registry. Packed with real-world examples using freely available open source tools Deep explanation and understanding of the Windows Registry--the most difficult part of Windows to analyze forensically Includes a CD containing code and author-created tools discussed in the book. Unfortunately, bad guys have used specific locations in the Registry to remain persistent on systems a lot longer than many analysts actually realize. Don Weber, a friend and fellow IBM alum who’s now with InGuardians, was on an engagement where he found that the bad guys were actually storing executable files in binary Registry values. Finally, the Registry contains a wealth of time stamped data, that when taken in context, can be extremely valuable to an analyst. As the Windows operating systems become even more sophisticated, analysts who are not actively investigating the Registry now will become completely overwhelmed in very short order.
Reviews
Find Best Price at Amazon"The author also focuses on presenting examples and use cases on how the reader can leverage information in the registry as part of an analysis."
"Helped for some of the reports I was writing at the time, but found more up to date info on the web after some more extensive searches."
"Needed a deeper technical reference for server performance and troubleshooting use."
"The content is worth five stars but the poor design of the kindle edition is worth about two."
"Drills down into depths of Registry."
"So far so good."
"Few people outside this small craft are equipped to appreciate what computer forensics is - and I am not about to attempt explaining the full scope of computer forensics in this limited space. Here, Harlan attempts to explain how to conduct forensic analysis of the Windows Registry. The Registry is never-never land for most of the computer forensic "experts" I've known. Today, people like Harlan are developing tools for Registry analysis and writing books explaining how to do it. Yet, I would say that this book is not suitable for beginners in computer forensics because there is so much else to know about operating systems and file systems before you can grasp what the Registry is all about."
"Very thorough book."
Windows Registry Forensics: Advanced Digital Forensic Analysis of the Windows Registry, Second Edition , provides the most in-depth guide to forensic investigations involving Windows Registry. Harlan Carvey is a senior information security researcher with the Dell SecureWorks Counter Threat Unit - Special Ops (CTU-SO) team, where his efforts are focused on targeted threat hunting, response, and research.
Reviews
Find Best Price at Amazon"The author also focuses on presenting examples and use cases on how the reader can leverage information in the registry as part of an analysis."
"Helped for some of the reports I was writing at the time, but found more up to date info on the web after some more extensive searches."
"Needed a deeper technical reference for server performance and troubleshooting use."
"The content is worth five stars but the poor design of the kindle edition is worth about two."
"Drills down into depths of Registry."
"So far so good."
"Few people outside this small craft are equipped to appreciate what computer forensics is - and I am not about to attempt explaining the full scope of computer forensics in this limited space. Here, Harlan attempts to explain how to conduct forensic analysis of the Windows Registry. The Registry is never-never land for most of the computer forensic "experts" I've known. Today, people like Harlan are developing tools for Registry analysis and writing books explaining how to do it. Yet, I would say that this book is not suitable for beginners in computer forensics because there is so much else to know about operating systems and file systems before you can grasp what the Registry is all about."
"Very thorough book."
Named a 2011 Best Digital Forensics Book by InfoSec Reviews Packed with real-world examples using freely available open source tools Deep explanation and understanding of the Windows Registry – the most difficult part of Windows to analyze forensically Includes a CD containing code and author-created tools discussed in the book. Tools and techniques will be presented that take the analyst beyond the current use of viewers and into real analysis of data contained in the Registry. Packed with real-world examples using freely available open source tools Deep explanation and understanding of the Windows Registry--the most difficult part of Windows to analyze forensically Includes a CD containing code and author-created tools discussed in the book. Unfortunately, bad guys have used specific locations in the Registry to remain persistent on systems a lot longer than many analysts actually realize. Don Weber, a friend and fellow IBM alum who’s now with InGuardians, was on an engagement where he found that the bad guys were actually storing executable files in binary Registry values. Finally, the Registry contains a wealth of time stamped data, that when taken in context, can be extremely valuable to an analyst. As the Windows operating systems become even more sophisticated, analysts who are not actively investigating the Registry now will become completely overwhelmed in very short order. Harlan Carvey steps the reader through critical analysis techniques recovering key evidence of activity of suspect user accounts or intrusion-based malware. Using his extensive experience and research, Harlan's case studies provide behind-the-scenes details that enable every analyst to utilize these techniques immediately in their own investigations.
Reviews
Find Best Price at Amazon"The author also focuses on presenting examples and use cases on how the reader can leverage information in the registry as part of an analysis."
"Helped for some of the reports I was writing at the time, but found more up to date info on the web after some more extensive searches."
"Needed a deeper technical reference for server performance and troubleshooting use."
"The content is worth five stars but the poor design of the kindle edition is worth about two."
"Drills down into depths of Registry."
"So far so good."
"Few people outside this small craft are equipped to appreciate what computer forensics is - and I am not about to attempt explaining the full scope of computer forensics in this limited space. Here, Harlan attempts to explain how to conduct forensic analysis of the Windows Registry. The Registry is never-never land for most of the computer forensic "experts" I've known. Today, people like Harlan are developing tools for Registry analysis and writing books explaining how to do it. Yet, I would say that this book is not suitable for beginners in computer forensics because there is so much else to know about operating systems and file systems before you can grasp what the Registry is all about."
"Very thorough book."
Best Win32 API Programming
Covering the material needed to understand and write 32-bit Windows applications for Windows 95 and Windows NT 3.51, this work details Win32 application programming concepts, and techniques for the common Application Programming Interface (API) of Windows 95 and Windows NT. In addition, the book covers such important advanced topics as creation of Dynamic Link Libraries, storage management, windows subclassing, the Multiple Document Interface (MDI), and threads and their synchronization. More than just an introductory book, Win32 Programming is a reference to many of the more obscure and sometimes incomprehensible advanced features of the user interface and graphics subsystems.
Reviews
Find Best Price at Amazon"Written for the experience C programmer but it still has plenty of information for the less experienced programmer like me or for someone who wants to learn about Win32."
"By far, Programming Windows fifth edition by Charles Petzold is the best book ever in this topic."
"This book shows the complete library explanation that is missing from MSDN Microsoft."
"I could to track step-by-step the delivery by Amazon site, that sent me frequently emails about my purchase."
"For example Herb Schildt's Programming Windows 98 from the Ground Up teaches WIN32 programming and I find myself more productive in less time studying that book, even though WIN32 programming teaches with a philosophy that one is (ultimately) going to be writing large multifile programs, and this philosophy isn't apparent in Schildt's book."
"It exhaustively details the thousands of widgets (i.e. functions, manifest constants, structures, etc) that make up Win32, and provides detailed intellegent discussions of the concepts behind those widgets. Since this is some of the most difficult programming imaginable, it is not a good place to start learning 'C'. I had orginally consulted Windows "Help" and Petzold trying to get a handle on this elusive and difficult subject."
Best Device Drivers
Learn how Docker simplifies dependency management and deployment workflow for your applications Start working with Docker images, containers, and command line tools Use practical techniques to deploy and test Docker-based Linux containers in production Debug containers by understanding their composition and internal processes Deploy production containers at scale inside your data center or cloud environment Explore advanced Docker topics, including deployment tools, networking, orchestration, security, and configuration. He has spoken about subjects like alerting fatigue and hardware automation at various meet-ups and technical conferences, including Velocity.Sean spent most of his youth living overseas, and exploring what life has to offer, including graduating from the Ringling Brother & Barnum & Bailey Clown College, completing 2 summer internships with the US Central Intelligence Agency, and building the very first web site in the state of Alaska.
Reviews
Find Best Price at Amazon"But after reading the book (almost every chapter and paragraph), I like the book and think this is very well written."
"Not a bad overview at all."
"Great book about container/Docker concepts and implementation."
"Wonderfully opinionated guidebook for Docker that will carry you to production."
"Good intermediate, we'll rounded book."
"I was expecting more out of this book."
"Just like the title says, this is a quick intro to Docker."
"Overall, I while I believe that the details of the book are well considered, there is a lot of context missing that makes the material more difficult to understand than it should be. The first step is to set up proper access in Amazon's IAM, and the authors provide a JSON snippet that will do so. The authors could broaden their audience and increase clarity with very little extra work, but they have to step back and read what they have written assuming that the reader doesn't know everything that they do. Another example occurs just two pages later, when they show output from requesting details about a container instance within an AWS cluster. When assembling technical reviewers it can be tempting for authors to surround themselves with subject matter experts, but it is also important to find some way to look at the material from the perspective of the target audience. Someone should have been approaching the manuscript from the point of view of a reader at the low end of the experience scale, and I don't see any reason to think that this happened."
Best Unix Programming
The Linux Programming Interface (TLPI) is the definitive guide to the Linux and UNIX programming interface—the interface employed by nearly every application that runs on a Linux or UNIX system. Michael Kerrisk has been using and programming UNIX systems for more than 20 years, and has taught many week-long courses on UNIX system programming.
Reviews
Find Best Price at Amazon"I can't imagine the work done in writing such a massive book, but I appreciate it."
"If your serious about developing AAA Linux applications this is an excellent guide."
"The images are all broken on the Kindle version."
""The Linux Programming Interface" is a very comprehensive book targeted at programmers and is concerned with teaching the system calls and library functions provided by the Linux operating system."
"This book is pretty amazing in explaining complex subjects in Linux programming."
"I purchased this book to use on my job as a part time programmer working from home on scientific applications in a Linux environment."
"It's a great reference, better than googling!"
"This is a thorough, well-organized, lucidly written treatment of the somewhat arcane world of programming in the Linux environment."
Best Unicode Encoding Standard
Ideal as a quick reference, Regular Expression Pocket Reference covers the regular expression APIs for Perl 5.8, Ruby (including some upcoming 1.9 features), Java, PHP, .NET and C#, Python, vi, JavaScript, and the PCRE regular expression libraries. He's also the author of Regular Expression Pocket Reference, former Engineering Director for Odeo.com and former Engineering Lead for O'Reilly Media.
Reviews
Find Best Price at Amazon"Regular expressions are often viewed as one of the most cryptic subjects in programming or systems administration."
"In addition to brief explanations of the different types of regexes in the wild (based on the comprehensive Mastering title, also from ORA), there are detailed quick references to all of the different implementations including several common languages (Perl, PHP, C#, and several others) and software packages (including sed, Apache, vi and many others)."
"If you ever play with text files to produce reports, speadsheets, etc ... this book is for you ... of course, if you have never used regexp before, grab a more comprehensive teaching book ... but you will find yourself trying to remember the arcane syntax and this book can help."
"Hassle free delivery by Amazon."
"A pocket reference like this is indispensible when you don't have a photographic memory for aligning vast sequences of escape characters."
"If you're still here, then you'll get a cheat sheet on steroids for languages ranging from bug-prone JavaScript to the King and Queen of robustness, Perl and Python."
"I recommend the pocket reference over the full book."
Best Computer Operating Systems Theory
Knowing where to start when learning a new skill can be a challenge, especially when the topic seems so vast. There can be so much information available that you can't even decide where to start. Or worse, you start down the path of learning and quickly discover too many concepts, commands, and nuances that aren't explained. As new concepts, commands, or jargon are encountered they are explained in plain language, making it easy for anyone to understand. How to be efficient at the command line by using aliases, tab completion, and your shell history. As the founder of the Linux Training Academy and an instructor of several courses, Jason has had the good fortune of helping thousands of people hone their Linux skills.He started his career as a Unix and Linux System Engineer in 1999.
Reviews
Find Best Price at Amazon"This is a good book for any beginner or a very handy book for a reference or refresher session."
"Excellent for beginners in terminal commands."
"Excellent coverage of command line elements and scripts."
"Great book."
Best Novell Netware Operating System
This new edition covers installing, configuring, and managing Novell Open Enterprise Server, which incorporates both the NetWare 6.5 and SUSE Linux Enterprise Server network operating systems. Ted has used virtualization software to aid in teaching computer lab classes for several years, and has given presentations on virtualization for Course Technology conferences.
Reviews
Find Best Price at Amazon"Smelled like smoke and has weird colored stains on some pages but other than that it is in good condition and it was super cheap so I can't complain."
"Bought this book for novell class."
"i had 2-3 day expedite promised."
Best EPOC-Symbian Programming
CD-ROM, in plastic shell case, provides portable access to the printed text of the same title, 6th edition, c2004. Fred F. Ferri, MD, FACP, is Clinical Associate Professor, Brown University School of Medicine and Chief, Division of Internal Medicine, St. Joseph's Health Services, Fatima Hospital, Providence, Rhode Island.
Reviews
Find Best Price at Amazon"i bought the 4th edition 2 years ago, and i found it to be very useful, not only during wards, or medical school but also for a quick review when preparing the exams for the residency in my country."
"I was introduced to this book by my intern 2 years ago when I was a student during the first week of my gen med rotation. I hate carrying stuff in my white coat, especially books of this size. The stuff you see everday on the wards is reviewed very well, with signs, symptoms, diagnostic workup and treatment. But in the ED when you are accepting a thyroid storm, CVA, GIB, whatever, its there and it will get you through the admission and the evening until morning rounds with the attending. Another great feature is the section that helps to interpret many labs you may order. I'd say the next step is the little red book put out by Stanford (Standford Internal Medicine pocket guide?"
"As the other reviews here say, Ferri has a lot of useful content for the wards - Physical exam findings, differential diagnoses, brief & useful info on common medical conditions."
"My wife bought and used this one during her training and found it very easy and to the point."
Best COM, DCOM & ATL Programming
Written by a leading COM authority, this unique book reveals the essence of COM, helping developers to truly understand the why, not just the how, of COM. Nonetheless, if you're a C++ programmer and you want your skills to continue to be relevant in a PC market dominated by Windows 95 and Windows NT, you need to get going down the path toward your own COM enlightenment. Endorsed by object-orientation guru Grady Booch and Microsoft COM expert Charlie Kindel, Box's book takes the reader from an elucidating discussion of why a demand exists for COM and how it fits into the progression of C++ technology to a cool exhibition of some COM programs he's written.
Reviews
Find Best Price at Amazon"Even the latest technologies like Windows Runtime (Metro) or Media Foundation are COM-based APIs. The book doesn't contain whole listing of source codes, nor step-by-step examples (showing how to create COM servers - for instance). But if you have basics of COM, the book is the great tool that will extend your knowledge. I compiled samples (my own, not from companion source) under Visual Studio 2010 for x64 CPU, and there were only minor changes I had to do (ProxyStub DLL for standard marshaler is linked with other LIB and you have to set x64 flag for MIDL compiler)."
"This is a great book and delivers exactly what the jacket says."
"If you want to learn COM, start here."
"But if you want to make a product with Win32 dll that needs to be binary compatible with products built using different compilers without COM then books explains you very well on how to do it in the very first chapter of Why COM?"
"However, even after the fact, this book is a great read."
"If you have good understanding of C++ concepts and Windows programming, this is a great book for learning COM technology."
"I've been learning COM for a while starting out with VB, and then realizing the real COM developement is done with C++."
"This is a great book if you already have some experience with COM."