Detailed Information
Cited 0 time in 
Cited 0 time in 
Cited 0 time in
Metadata Downloads
On-site investigation methodology for incident response in Windows environments
- Authors
- Lee, Keungi; Lee, Changhoon; Lee, Sangjin
- Issue Date
- 5월-2013
- Publisher
- PERGAMON-ELSEVIER SCIENCE LTD
- Keywords
- Digital forensics; Rapid investigation; On-site investigation; Live forensics
- Citation
- COMPUTERS & MATHEMATICS WITH APPLICATIONS, v.65, no.9, pp.1413 - 1420
- Indexed
- SCIE
SCOPUS
- Journal Title
- COMPUTERS & MATHEMATICS WITH APPLICATIONS
- Volume
- 65
- Number
- 9
- Start Page
- 1413
- End Page
- 1420
- ISSN
- 0898-1221
- Abstract
- In recent years, various computers have been compromised through several paths. In particular, the attack patterns and paths are becoming more various than in the past. Furthermore, systems damaged by hackers are used as zombie systems to attack other web servers or personal computers, so there is a high probability to spread secondary damage such as DDoS. Also, previously, hacking and malicious code were carried out for self-display or simple curiosity, but recently they are related to monetary extortion. In order to respond to incidents correctly, it is important to measure the damage to a system rapidly and determine the attack paths. This paper will discuss an on-site investigation methodology for incident response and also describe the limitations of this methodology. (c) 2012 Elsevier Ltd. All rights reserved.
- Files in This Item
- There are no files associated with this item.
- Appears in
Collections - School of Cyber Security > Department of Information Security > 1. Journal Articles
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.