The purpose of this article is to list down books and learning resources for Digital Forensic self-learners and new comers. When I was started learning about fundamentals and principles of Digital Forensic and Incident Response, I had a hard time looking for the starting point. Also, most of the learning tutorials and training courses are not free. This is my collection of resources for newcomers to Digital Forensic research area.
Thanks to the Digital Investigation Journal from Elsevier publication. I got a hand on high quality research papers and trend on Digital Forensic. The other journals that focus on DFIR are
- IEEE Transactions on Information Forensics and Security
- International Journal of Cyber-Security and Digital Forensics
- International Journal of Digital Crime and Forensics
- International Journal of Electronic Security and Digital Forensics
- The International Journal of Forensic Computer Science
- International Journal of Information and Computer Security
- Journal of Digital Forensics, Security and Law
- Journal of Information Security and Application
As for the books, This is the books I discovered and presented by categories. Of course, it is not necessary to read all the books. You can justify and focus on the books which provides the skills and knowledge you requires. As for the beginner, It is a good idea to start picking a book or two of fundamental and basic concepts of DF before continuing to a platform specific books. In this way, it will give you some foundation and formal knowledge required.
Fundamental Principles & Concepts
- The Basics of Digital Forensics: The Primer for Getting Started in Digital Forensics
- The Best Damn Cybercrime and Digital Forensics Book Period
- Handbook of Digital Forensics and Investigation
- Digital Forensic with open source tools
- Investigating Internet Crimes: An Introduction to Solving Crimes in Cyberspace
Procedures and Forensic Models
- Digital Forensics Processing and Procedures
- Digital Forensics: Threatscape and Best Practices
- Digital Forensic Triage
- Operating System Forensic
- Windows Forensic Analysis
- Linux Forensic
- Android Forensic
- iPhone and iOS Forensic
- Digital Forensics for Network, Internet, and Cloud Computing
- Virtualization and Forensics: A Digital Forensic Investigator’s Guide to Virtual Environments
- Windows Registry Forensic
- Big Data Forensics: Learning Hadoop Investigations
- Cloud Storage Forensic
Python for Forensics
- Python Forensics: A workbench for inventing and sharing digital forensic technology
- Violent Python: A Cookbook for Hackers, Forensic Analysts, Penetration Testers and Security Engineers
- Mastering Python Forensics
Blogs & Tutorials
Except fellow twitter DFIR people and Linkedin groups, I don’t read any particular blogs that focus about current trends and issues on Digital Forensic. The entry from Digital Forensic Association and also Forensic Focus selected 5 top DF blogs.
As for tutorials, I believe there are many paid training programs available for every aspects of Digital Forensic field. I recommend Cybray for computer security and forensic free programs and it’s also a network of fellow security practitioners. For beginners with A+ and Security+ knowledge, go for Computer Hacking Forensic Analysis course.
That’s for now.I will update this blog post time by time based on my discovery on Digital Forensic.