5 comments about At Large: The Strange Case of the World's Biggest Internet Invasion.

1. After reading Cliff Stolls book, The Cuckoo's egg, i was up for another great book about hacking. This wasnt it. It was somewhat melodramatic at times, throwing in adjectives to make things sound interesting, but being written from an outsiders perspective it couldnt convey the feeling required to get you into the book. I also disliked the constant jumping between characters plots, sometimes every other page. The capper was when it said "anyone who has worked with DOS has a rough idea of what Unix is like". NOT! This is good for the armchair non-computer person.



2. This book is the worst piece of crap I have ever read. Same old sob story about the feds, etc. not taking computer crime seriously and being slow to get moving...blah, blah, blah....They figure out who the hacker is halfway through the book...so...no tension, no suspense, nothing....
   Save your money...come over to my house and steal my copy. I wont miss it one bit.

   The only shame is that I have to give it 1 star rather than NOTHING.....SAVE YOUR MONEY!!!!!




3. I am always up for true computer crime stories so I purchased it even though other customers dumped all over it. The book was very accurate (minus two inaccuracies in terminology) and easy to read. It did lack suspense but then again I read it for the historical perspective and not so much as a "who done it". Overall it was a fun read. Not as good as the The Cuckoo's egg but still worth reading.



4. This book chronicles the exploits of a young computer enthusiast who managed to break into an alarming number of computers, mainly by sheer perseverance. The book is also the story of the people who hunted this early cybercriminal and how he was ultimately caught.
   
   One of the remarkable aspects of the story is that the chief antagonist (the "hacker") was not particularly skilled. He was what's called a "script kiddie" in the biz. Another remarkable aspect of the book is that after breaking into dozens of computers, and finally getting caught after dozens of people had invested hundreds of hours tracking him, he was basically let off the hook with very little punishment.
   
   I found this to be a fascinating account of an extraordinary series of events. I recommend this book especially for those who are interested in the field of information security as it provides a glimpse of the motivations and methodology of one notorious cracker. For people who are interested in crimes or security, this will be a riveting story.
   
   All that said, this is only one side of the story and I wondered how accurate the reporting was. In particular, I wished that there was more on the motivation and thinking of the main antagonist, the super-cracker-slash-script-kiddie pseudo-named Matt Singer. In the book, he is characterized basically as a bad guy. There has been more written about this story and apparently the script kiddie's real name is Tim Bach. You can find his posts in the freebsd.org mailing list archives from 1995 and other on-line traces. These "real-world" glimpses do not seem, IMHO, to jive completely with the character in this putatively non-fiction book.
   
   In the same vein, Trent Fisher (no pseudonym for him in the book) has a website and doesn't seem too happy in how he was characterized.
   
   And, finally, the events are ancient history. In many ways, information security has taken strides since these events unfolded. Law enforcement and especially forensics are more advanced. And in important ways, modern worms represent the evolution of this breed of attacker.
   
   But it's still a fascinating and, I think, important story.



5. I really enjoyed reading this book. If you're into computers and networks or simply like a chase, you'll definitely want to read this one. It has some strange twists and an even stranger ending.

5 comments about Phishing Exposed.

1. What do phishers gain from their techniques, and how do they steal identities, passwords, and information? Learn to identify the three classes of security attacks, how phishers scour the net for valid email addresses to attack, and how they are able to exploit computer vulnerabilities with Lane James's Phishing Exposed, which will interest programmers, network administrators and legal officers alike. Chapters expose attacks then probe the world of organized phishing gangs and operations to show how phishers operate, and how you can protect your system.



2. Phishing Exposed is a powerful analysis of the many severe problems present in Web-based activities. Phishing Exposed is another threat-centric title from Syngress. The book presents research conducted by Secure Science Corporation as a way to understand the adversary. The author demonstrates his own attacks against multiple popular e-commerce sites as a way to show how phishers accomplish their goals. I was surprised by the extent to which the author could repeatedly abuse high-profile financial sites, and for that reason I highly recommend reading Phishing Exposed.
   
   The book begins with an overview of the phishing problem. Three basic phishing techniques (impersonation, forwarding, and popup) are explained. The mechanics of email and HTTP are also described. The heart of the book appears in chapters 4 and 5, where almost 270 pages are devoted to the author's assessment and abuse of banking sites. I was shocked by the author's ability to repeatedly take advantage of vulnerabilities in client and server software and configuration. These chapters made me wonder if it is possible for an average end user -- or even a skilled technical user -- running popular operating systems and browsers to survive these sorts of high-end attacks.
   
   Ch 6 featured some innovative material on subverting caller ID by using Voice over IP and other methods. I also appreciated the historical perspective in that chapter.
   
   My only real concern is that the author devoted lots of material to his own attacks, and not as much to attacks by real phishers. I would have liked additional details on how to detect and potentially defeat these attacks using network-based and proxy-based means.
   
   Incidentally, reviews by "relatives" should be considered suspect, although reviews with the title "inadequate and unoriginal" should be completely ignored. Reviews like that demonstrate another instance where that particular "reviewer" has once again skimmed the text and not spent any time reading the book. Phishing Exposed is incredibly original -- and that's why I've given it five stars, despite some rough editing from Syngress.



3. If you're on your way to a security conference this summer, and you'd like to get up to speed on web site abuses and browser design vulnerabilities, this book makes for excellent airplane-reading fare. I say this because Phishing Exposed manages to succeed on two fronts: it is both an instructive technical reference, as well as a surprisingly compelling narrative.
   
   The first is unsurprising -- it is, after all, a Syngress book, and so is typical of technical books from this imprint. The second accomplishment, though, was a pleasant surprise. It's not common that someone as deeply involved in the technologies of network security are also talented writers.
   
   As an example, while documenting the technical characteristics of e-mail delivery, James illustrates example forensic techniques of identifying the home city, working schedule, and handedness of the attacker. It's this mix of CSI-meets-ITSec that makes the book an honest page-turner.
   
   Given this literary attention to narrative and even elements of plot development (especially on the follow-the-breadcrumbs analysis of a seemingly endless series of HTTP redirects), this book illustrates the phishing problem in a way that both technically-oriented defenders and interested "power user" readers will understand and enjoy.



4. Phishing quickly exploded from a nuisance to a full-fledged threat in the middle of 2005. Weaknesses in email, combined with flaws in Web security and with a little social engineering mixed in make for an effective tool to get the attention of users and lure unsuspecting people into the trap.
   
   It didn't take long for the organized crime elements of the malware underground to recognize the power and efficiency of this tool. Phishing is a virtual poster-child for the convergence of malware because it is a malicious tool that helps tie viruses, worms, spam, Trojans and other malware together and get them delivered effectively to their designated targets.
   
   While a book like Phishing: Cutting The Identity Theft Line is aimed at managers and executives and users, this book is more along the lines of Inside The Spam Cartel in the way it dives deeper to look at the secrets and techniques and explore the underground that makes it work.
   
   While the content is more technical, James writing is engaging. Phishing Exposed is an excellent resource for developers, specifically Web developers, and for security experts to understand more about how and why phishing works, rather than just what it is and how to detect and defend against it.



5. Here are the chapters:
   
   - Chapter 1 Banking On Phishing
   - Chapter 2 Go Phish!
   - Chapter 3 E-Mail: The Weapon of Mass Delivery
   - Chapter 4 Crossing the Phishing Line
   - Chapter 6 Malware, Money Movers, and Ma Bell Mayhem!
   - Chapter 7 So Long, and Thanks for All the Phish!
   395 pages paperback
   
   As others have stated in their reviews, this is the book if you are involved in Internet security either at an ISP, webserver administrator or a security analyst at a large corporation or in law enforcement dealing with cybercrime. Phishing Exposed is also very useful for watch dog individuals on the web who actively report Internet scams to ISPs. It is an eye opener on how phishing scams have gotten more sophisticated in snaring unsuspecting victims' data within the last few years. This book was released in late 2005, however, most of the information is still rather relevant and useful for today for those who are working to minimize Internet fraud. For example, the use of botnets and malware have gained a larger role in the proliferation of phishing scams since this book was published; the author does cover some detail on this newer approach to perpetuating fraud online.
   
   I have pretty much read the entire book, though I read quickly through all the scripting and coding details Lance outlines in his book and the detail takes up quite a few pages. I did enjoy reading it, thus why it only took me about 2 days to get through it. As I come across some of the coding complexities Lance outlines, I will return to this book as a reference.
   
   One criticism I have is there is no glossary of terms. Lance uses many many technical terms, a few here and there that I didn't know and when I did read them, sometimes I forgot what they stood for.
   
   I will point out a few highlights which may be useful for some of what is covered:
   
   Email Headers
   The author provides us information on how to read email headers we receive in spam from phishers who are just a subset of spammers anyway. This is quite useful for those still learning how to decode email headers line by line. Though there are a few things the author leaves out regarding explaining the breakdown of headers, he covers this seldom-covered subject quite well. Most of the samples of spam we have here are Lance's own fake phishing spams, similar to examples you will read in the scripting sections.
   
   Scripting
   The author tells us about CSS (Cross Site Scripting) - Cross site scripting (also known as XSS) occurs when a web application gathers malicious data from a user. The data is usually gathered in the form of a hyperlink which contains malicious content within it. The user will most likely click on this link from another website, instant message, or simply just reading a web board or email message [...]. This part of the book will take me longer to grasp as my own scripting knowledge is not very strong.
   
   Lance covers the scripting exploits in creating phishing websites in regards to DHTML, DOM, SSL, JavaScript, redirects, and covers HTTP responses (common status codes) via user-agents. Lance uses his own made-up phishing sites to demonstrate how these scripts work. Status codes example: such as 404 file not found.
   
   Money Laundering
   Finally, the author also covers phisher money laundering in chapter (6) "Chapter 6 Malware, Money Movers, and Ma Bell Mayhem!" of the book. Phishers use mules to forward the funds for them (mules have bank accounts setup to accept the money and transfer it elsewhere: sometimes the "mules" do not even realize they are participating in illegal activity); this is similar to what drug dealers do to launder their money. He also covers caller ID spoofing in this chapter. This area is probably generally less well known, as it is more of the bank side of things of how the stolen money is transfered from account to account.

5 comments about Scene of the Cybercrime: Computer Forensics Handbook.

1. Hi,
   This book covers all aspects of information security but the title of the book is kind of misleading as the book only has 2 chapters that talk about anything close to Forensics.
   Would recommend this book to someone who is new to Information security . This ones certainly not a Forensics book .



2. I'm currently in the middle of the book Scene Of The Cybercrime by Debra Littlejohn Shinder, but I decided to do a review right now. This is a really good book on a number of levels...

   Most books on computer and network security are written for the techie trying to secure their assets from outside attack. Obviously, there's a huge need for that information. But it seems that there is virtually nothing written from the law enforcement perspective on computer security. That's a major problem in two ways... For one, there are too few law enforcement personnel that understand exactly what cybercrime is and how it can be detected, fought, and prosecuted. That's probably the audience that would benefit most from this book. Second, most technical personnel don't know what to do in order to successfully build a case and prosecute an attacker once an intrusion has occurred. That's the other audience that will gain the most from reading Shinder's work.

   The book includes the following chapters: Facing the Cybercrime Problem Head On; Reviewing the History of Cybercrime; Understanding the People on the Scene; Understanding Computer Basics; Understanding Network Basics; Understanding Network Intrusions and Attacks; Understanding Cybercrime Prevention; Implementing System Security; Implementing Cybercrime Detection Techniques; Collecting and Preserving Digital Evidence; Building the Cybercrime Case

   The hardcore network security administrator will probably already know most of the information in the "Understanding..." chapters. But unless they are adept or experienced in forensic analysis, the last three chapters will be crucial information for them. Without the knowledge of how to preserve evidence, there's a good chance that you'll never have the satisfaction of seeing your attacker prosecuted. Higher level managers of a corporate security department will find all of this information useful, as they may not be as hands-on as the administrators and may not understand what threats and risks are present in today's environment.

   From the law enforcement perspective, it's all good. Fighting cybercrime is so different than regular law enforcement. This is the perfect volume to give the budding cybercop all the information they need to get up to speed with how crime is conducted electronically. I would recommend that this book be required reading for law enforcement and prosecution personnel.

   The book is well written with plenty of real-life examples of criminal activities and legal scenarios. It's one of the most engrossing technical reads I've had in awhile. A definite recommended read...




3. This is a tough book to review as it tries to speak to two very different audiences -- corporate information security and law enforcement professionals.
   The corporate information security professionals will find the technical details misleading and over simplified but will definitely benefit from the detailed discussions of proper process and procedure.
   The author leverages her experience as a police officer and academy instructor to good effect in educating us on the viewpoint of the law enforcement community and the requirements we must meet in collecting and preserving admissible evidence.
   My advice would be to VERY lightly skim the "technical" material on vulnerabilities, exploits and defenses while reserving detailed reading for the material dealing with process and procedures as well as the logistics for involving and interacting with law enforcement.



4. Overall, a very good book.
   
   At times, tries to be too much to too many.
   
   But good info.



5. Littlejohn Shinder writes a fairly topical analyses of various facets of cybercrime -including several- what can only be described as Computers 101 sections but if you're a typical n00b then it will all seem like a glorious epiphany. In Ch 4 she gets a little on the didactic side where she attempts to debunk the various stereotypes and cliched mindsets associated with the hacking community but she falls far short of any real insight.
   
   Don't bother reading this book if you have even a modicum of tech savvy - the writer won't be telling you anything that you don't already know or figured out for yourself hands on. BTW, most of the URLS provided as reference in this book are 404, which is only to be expected given its 2002 publication date, however I include the comment here in this review because if you're like me, then you like to check out the resources the writer used.
   
   Lastly, by no stretch of the imagination should this title be considered a computer forensics book. The only audience that will consider said title as such are executive officers and marketing types who don't have a clue.

5 comments about Uberhacker II: More Ways to Break into a Computer.

1. Carolyn P. Meinel is well known throughout the hacking community as a fraud, a wannabe and a charlatan. Anyone interested in hacking would be far better off picking up the most recent addition of "Hacking Exposed" or one of the many other excellent computer security and hacking books out there. With so many good books on the subject being published there is no valid reason for anyone to waste their hard earned money on garbage like Carolyn P. Meinel's books.



2. Now in a completely revised and updated edition, Uberhacker II: More Ways To Break Into A Computer by Carolyn Meinel is a straightforward and "user friendly" guide which is filled with basic information that can be used to compromise security in computers - as well as protecting them against just such intrusions. Unapologetic in its explicit and meticulous deconstruction of the weaknesses in Unix, Linux, Windows, and other systems, Uber-hacker II is a profusely exampled and information-laden text which is a "must-read" for anyone charged with computer security in this volatile age of computer hackers and cyber thieves.



3. How sad that an author should feel compelled to try to sabotage this book. HIGHLY RECOMMENDED



4. The author of this book is well known in the hacker community.......for being a crook. Seriously, some of the stuff in this book is just beyond nonsense. Go read a more technical book, so you can learn alot more about "Hacking".



5. "This Product Sucks... buy mine instead!" Those aren't reviews, they're sophomoric and shameless plugs. I wonder how many of these people actually READ the book.

5 comments about Spyder Web.

1. I bought this book thinking that it would be better than Tom Clancy's attempt at Internet terrorism. Alas it was just as bad, with simplistic technology twists, and the reliance of a Navy Seal character for the tense action. The story is simple, with nothing in it other than a sense of purpose to keep you turning the page. If you want a decent techno-thriller I recommend the Cryptonomicon. This is squarely for the younger audience who are still wanting to read simple tales with simple characters.



2. This book was one of best books I ever read. I like espionage stories but since I'm a programmer, I want technology to be a big part of the story. This had both and it's hard to find these two things combined sometimes. Great action, more or less non-stop the whole way. This was a lot of fun and intelligent to boot. Has Grace written anything else? I want more.



3. Great Characters, plot, action, location and writing. This book has all the elements of a good read. Brings together US, Britain, China and Russia. Plenty of twists from technology within the understanding of the less than technologically proficient. Good Story. Looking for the next book. Does remind me a bit of Clive Cussler.

   Hooked on books.




4. My problem with this book is the characters. Does everybody have to be a super-man or super-woman? I like characters I can Identify with, not super-powered brainiacs who could rule the world if they chose to. Its hard to identify with ex-navy SEALs who also have advanced degrees in every discipline known to man. It was like watching an episode of Baywatch where the characters were smart and good-looking.

   I appreciate that the other reviewers like the fast-paced plot, and it is well written, but the dialog sounds like a bad soap opera ("As you know, Bob, I..."). It was hard to finish. Buy it at a discount if you like these kind of thrillers, but if you want characters, look elsewhere.




5. I had to balance these folks who are giving out ***** reviews willy-nilly. The gentleman who complained about the ubermensch characters hit on the head one of the several nails in this book's coffin. Others include the very predictable plot, the insignificance of the technology (which was supposed to be the core of the whole thing), and some places where my disbelief was unwilling to suspend itself.

   I gave it the extra star from my 1 for 2 reasons: the writing was not so poor that I couldn't finish it, and the technology, while not central, at least was for the most part plausible and correct. That's always a plus, even more so since Grace avoided a heavy "gee-whiz" factor that often accompanies mainstream use of technical gimmickry.

   And I was glad I got it at a serious discount...

1 comments about Cybercrime: Security and Surveillance in the Information Age.

1. This book is a great reminder of how the internet world can be today. Thomas did a wonderful job of collecting facts, ideas, and views of all the danger that the public is facing today. I recently spoke with a member of a group mentioned in the book that I happen to know, and he referred it to me. It was a great way to pass the time and help learn about mistakes that you could make.

5 comments about My Tiny Life: Crime and Passion in a Virtual World.

1. I found this book compulsively readable. I was a regular on LambdaMOO at around the same time that Dibbell was, and I found his descriptions of the experience of MOO-ing (what it's like to be there and participate in various ways) quite accurate. As for his version of MOO history, I wouldn't take it too seriously, but then, he makes it pretty clear that the motivations behind and significance of the events that he recounts are disputed. What impresses me about this book is the way it captures the feeling of being in the MOO, and the analysis of the issues that got raised in various conflicts.



2. I was the character that Dibbell called "Laurel" in his book. I was "there" though the entire story he describes, reading what he read in real time, although I never "spoke" with him (on-line or off). His book is remarkably accurate, although he does not have all the facts straight of the people behind the LambdaMOO characters. He deserves a lot of credit -- he got it closer than anyone else possibly could have.



3. The author presents a tour of cyberspace. During this journey, we learn how the author feels, and what their priorities are. Cyber communites are the logical extension of chat sites, and web/ mail exchanges. In the real world, where restrictions can be placed on our daily lives, virtual reality provides an escape. Exploring this venue, we can learn more about ourselves as we interact with others, and the new environment. I'm glad the author documented their experiences!



4. Pretentious, meandering, and bereft of anything that could be mistaken for value. I question its use even as a cautionary tale of a man who has lost all ability to distinguish between the real world and a world of pretend.



5. A rather interesting autobiography of a MOO player's life and experiences within LambdaMoo. Tends to drag in a few places, but interesting nonetheless when you consider the dilemmas still facing MMO players today: is it just a game? Is your avatar just a piece of geometry/text on a screen? Or is it more? When your avatar is assaulted, do you feel as though you yourself have been assaulted?

No comments about Using Geographic Information Systems in Law Enforcement: Crime Analysis and Community Policing : Using ArcView 3.X.

5 comments about The Professional Paranoid.

1. H. Michael Sweeney made a lot of psychological observations and recommendations that are invaluable for people trapped in a war with electronic eavesdroppers and other stalkers. I would recommend the book on that basis to anyone with an interest in the subject. The book is a treasury of practical suggestions that I very much enjoyed.

   At the same time I would advise anyone to disregard his technical opinions and read more technologically competant authors like M. L. Shannon for defense startegies based on using or avoiding electronics.

   Mr. Sweeney said, for instance, to only use an analog cell phone, never digital. He should know that analog is open to everyone with a scanner. DES and CDMA are essentially unbreakable. Why would he tell people--with no explanation--that a mode that isn't even encrypted is the only type safe enough to use? I was so horrified at a mistake of this magnitude that I could barely read past this point.

   If he has a defense I would be interested in hearing it. No competant technical author I have read agrees with this...




2. When I was targeted by the Clinton Administration, I experienced several years of round the clock physical surveillance and harrassment and all manner of risks for which my experience on Wall Street and in Washington had not prepared me. This included friends and family who helped me during this extraordinary period also being targeted.

   Thank goodness for H. Michael Sweeney and his book, The Professional Paranoid. To this day, I believe that this book helped save my life. This was a period when websites kept death lists of people who had been targeted and died. I sure did not want to end up on one of those lists.

   Sweeney has lived through the real thing, bested it and his lessons learned can work for you, whether you are dealing with being targeted by the government, by private organized crime, or just a pesky landlord or neighbor. It's well written too.

   Unfortunately, the time has come in American when many of us have to protect ourselves, our family and our neighbors without much help from law enforcement. In the face of covert operations by intelligence agencies or the wishes of drug cartels, local police hands are often tied. Local police can be as scared of the powers that be as we are, or as mystified by the latest "tools of the trade" such as non-lethal weapons.

   H. Michael Sweeney can teach us how to "hold the line" despite what is happening and do it with a marvelous sense of humour. I recommend it highly.




3. My dad read this book back in 1984 and though it was
   good because it was honest about what was going on back then.



4. I am a whistleblower in a state Supreme Court Case and must say that this book is all it purports to be. I used the text to help resolve many of the problems I was having dealing with a certain government agency for which I worked. The methods of self protection outlined can be of use to any whistleblower involved in a serious situation. Mr. Sweeney, I applaud you for this timely work.



5. 
   Great little book unless you are "unstable," then it could push you over the edge. Stalkers, Corporate Bullies, Gangs, Professional Criminals, the IRS and a Host of Government 'Intelligence' Agencies... are groups mentioned.
   
   Interestingly the "how to fight back" are far from the "Get Even" and "Screw You" series by another author.
   
   Best chapter (and point of the book) is "Awareness is the First Line of Defense" unless of course you are already freaked out, then skip this chapter AND the book.
   
   There's also a useful Internet Resource listing in the book.
   
   A great and useful read. Recommended.

4 comments about Cyber Crime Investigator's Field Guide.

1. I was disappointed with the Cyber Crime Investigator's Field Guide. Half of the book (Appendix G) is simply a printout of the US Department of Justice Search and Seizure Guidelines. Although the guidelines are required reading, one should not have to pay for information that is available for free on the Department of Justice Web site. Chapter 6 of the book is a series of questions and answers on various subjects. The questions and answers are valuable, but the overly brief answers do not provide readers with the rationale behind the answers.

   The book is not without merit, though; Chapter 9, "Case Study," describes the general course of action a forensic examiner should take when involved in a computer investigation. The author details what he does in the course of a general forensic investigation -- from the time he gets the call, to his ride from the airport to the client site, to the on-site pre-briefing, and beyond.




2. I found this book to be fantastic. Whether you are an experienced investigator of computer network security incidents (as I am for government/military/commercial organizations) or a neophyte just getting into the field of computer forensics, this book takes you through everything you need to know. The chapter on how the author handles an investigation in detail from start to finish is great. I'm applying what I learned there already. The coverage of forensic tools such as EnCase and tools from NTI is great. He gives me step by step information on how to use these tools, which I really need because you can't remember everything to do with all the tools I am involved with. The various reference sections on web sites, tool sites, attack signatures, etc. has been extremly useful for me and various organizations I work with. It's great to have the DOJ Search & Seizure Guidelines in the book. Sure, I can go out to the DOJ website and after some searching find them, but it is difficult to work through all the various links, I can't take notes there, make underlines, etc. It's really nice to have these and other guidelines in a handy written reference. This is one book that goes with me and my team members whenever we leave for a client site. It has just about everything we need for reference purposes. The author calls it a field guide and that is just what it is. I highly recommend this book. Very practical. I just hope the author is going to write another book...no doubt we will pick it up.



3. I've definately read better computer forensics books. 90% of the applications that the author recommends and describes how to use are not downloadable and cannot be purchased in a software store! All the links point to a 'contact a sales agent today!' This makes me ask, "Is Bruce a paid spokesperson for Forensics-Intl.com"
   Additionally the author goes from very basic information to very complex information, leaving out very important middle information. I've been working with computers for more than 17 years and if I found this book to be somewhat cryptic, a newbie isn't going to understand any of the critical information that he/she should know before attempting to perform any kind of computer forensics.



4. I've heard Bruce Middleton speak at international security conferences before and followed some of the articles he has written in the past on information security so when I noticed that he had written a book on investigating computer security incidents (CyberForensics), I knew it would be a great book to have. I was not disappointed. This is definitely a book for professionals in this field (like he says...it's a field book...something you take to the field with you for reference). Someone new to the field would also get alot out of the book if they have access to the professional level software he uses throughout the book (outstanding software from Guidance Software [EnCase], NTI [their computer forensics tool suite] and AccessData [their FTK = Forensics ToolKit] ). Even if you don't have the software currently and you want to break into this field, it's a great book to buy due to the fact that he goes into detail explaing various process, procedures, methodologies, etc that firmly relate to solving computer related crimes. I also understand that he is holding hands-on training classes with this software and using this book as the foundation. Bottom line...this book is an excellent "must have" for a CyberForensics professional working in the field and a great read for those wishing to break into this field.