Customer Rating:  
Summary: Excellent resource and guide
Comment: I purchased this book in August as one of the pieces for my self training for the computer forensics discipline. I purchased it with the intent of downloading the PDF version and putting it on my Amazon Kindle so I could easily carry the book with me. I've been very satisfied with the content, especially the numerous links to related material. Mr. Kleiman brought together a group of people each of whom made a significant contribution to an excellent product.
As one reviewer has noted, there are weaknesses, especially in the proofreading and editing. This reflects on the publisher rather than the author as I'll detail below this. I can easily get past those weaknesses because this isn't a literary work.
As it turns out, the weaknesses were not caused by Mr. Kleiman or the other contributors to the book. In the process of acquiring the PDF that was to be included in the purchase price I learned that Syngress has been having problems, probably financially based, for quite some time. This resulted in delivering products that had not been fully prepared as was the case with this book. Mr. Kleiman as an author submitted in good faith a book to be proofread, edited and published. He provided content that easily justified the price of the book and expected Syngress to fine tune the product before releasing it.
Several days after purchasing the book I made my first of several attempts to contact Syngress and download my promised PDF copy. After several phone calls and emails I realized I was wasting my time. I then sent an email to David Kleiman and at about the same time I learned that Syngress had closed their doors and was being taken over by Elsevier. Mr. Kleiman and I exchanged emails for a month or so as he worked with the kind folks at Elsevier to get the PDF to me. About a week ago I received an email from Mr. Kleiman stating that the PDF would be available to me soon. Shortly after that I received an email from Elsevier telling me how to download the PDF. I did that and I now have it on my Kindle and can access it at any time as I originally planned. I find it to be an excellent resource and well worth the purchase price and the time spent reading it.
I commend David Kleiman and Elsevier for doing what's right.
Customer Rating:
Summary: Sloppy, Sloppy, Sloppy
Comment: Rarely have I seen less information in so many pages. This book is poorly organized, riddled with inaccuracies and typos, and appears hopelessly outdated in many cases. (Frequent references to floppy disks and MS-DOS make me wonder where these authors have been since, oh, 1994).
Here's a clear example of the slovenliness of the book and its editors. The summary of the "PDA, Blackberry, and iPod Forensics" chapter contains no reference to the iPod. Obviously, the iPod section was added later, and no one thought to update the summary section.
Here's another example. The "PDA Investigative Tips" section advises the would-be investigator to leave the device in the "off" state, then immediately "switch on the device". Apparently, switching the device on leaves it in the off state. The book is full of nonsense like this.
The final straw for me, though, is the beginning of Chapter 13, which purports to examine forensic tools (hardware and software). The author of this chapter openly states that the chapter is "heavily based on the assertions of the vendors who make the products." In other words, they just slapped together a bunch of sales literature, and are not providing any real-world experience with, or observations of, the products. Well, at least they're honest about their laziness and lack of experience.
I have worked in the IT field for over 25 years now, and I have read many, many technical and instructional books. This is definitely one of the worst. Buy something else if you want to learn about forensics. I recommend "File System Forensic Analysis", by Brian Carrier.
Customer Rating:
Summary: Exactly what i wanted
Comment: Im currently enrolled to go to school for computer forencsics, however i dont start until september i wanted a book to jumpstart me in the field before i start classes to get familiar with the subject. I wanted a study guide to teach me the basics and i couldnt have gotten a better book. The Official CHFI study guide is exactly what i wanted and needed and now im more excited then ever to start classes in the fall. Very satisfied with my purchase.
Customer Rating:
Summary: CHFI is the CEH exam for the forensic examiner
Comment: I found this book to be very complete, the CHFI exam still seems to be in its preliminary stages however this exam along with the Certified Computer Examiner (CCE) Certification seem to be the only non-software dependent certifications. This book once purchased can also be downloaded as a pdf from the website. Cover all tools including encase, sleuthkit, paraben's network email examiner, etc.
|
|
