Computer Forensics Primers ("for Dummies", I'm afraid)
Posted on 2004-09-24
Our security people remind me of Inspector Clouseau, and they're about as subtle as a spastic bull in a china shoppe when conducting investigations into employee misuse of IT resources.
I'd appreciate some links or references to online competent resources or good still-in-print books on the subject of how to *properly* do IT investigation and colmputer forensics. We are a multi-platform, heterogeneous environment, so M$-specific resources are not all that applicable. I'm looking mailly for "principles, guidelines and generalized methods", rather than "Here's how you do X forensic task on platform Y with package Z".