Skip to main content
Springer Nature Link
Log in
Apress

PowerShell and Python Together

Targeting Digital Investigations

  • Book
  • © 2019

Overview

Authors:
  1. Chet Hosmer

    1. Longs, USA

    View author publications

    You can also search for this author in PubMed   Google Scholar

  • Shows how Python and PowerShell can be leveraged together as they currently separately support IT, administrators, and investigators
  • Presents the broad range of capabilities offered by both technologies to provide a rapid response when addressing cyber incidents
  • Covers the expertise in both areas that contributes to new innovative solutions

This is a preview of subscription content, log in via an institution to check access.

Access this book

Log in via an institution
eBook USD 34.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Other ways to access

Licence this eBook for your library

Institutional subscriptions

About this book

Bring together the Python programming language and Microsoft’s PowerShell to address digital investigations and create state-of-the-art solutions for administrators, IT personnel, cyber response teams, and forensic investigators.

You will learn how to join PowerShell's robust set of commands and access to the internals of both the MS Windows desktop and enterprise devices and Python's rich scripting environment allowing for the rapid development of new tools for investigation, automation, and deep analysis.


PowerShell and Python Together takes a practical approach that provides an entry point and level playing field for a wide range of individuals, small companies, researchers, academics, students, and hobbyists to participate.


What You’ll Learn

  • Leverage the internals of PowerShell for: digital investigation, incident response, and forensics
  • Leverage Python to exploit already existing PowerShell CmdLets and aliases to build new automation and analysis capabilities
  • Create combined PowerShell and Python applications that provide: rapid response capabilities to cybersecurity events, assistance in the precipitous collection of critical evidence (from the desktop and enterprise), and the ability to analyze, reason about, and respond to events and evidence collected across the enterprise


Who This Book Is For

System administrators, IT personnel, incident response teams, forensic investigators, professors teaching in undergraduate and graduate programs in cybersecurity, students in cybersecurity and computer science programs, and software developers and engineers developing new cybersecurity defenses



Similar content being viewed by others

Keywords

Table of contents (7 chapters)

  1. Front Matter

    Pages i-xvi
    Download chapter PDF

  2. An Introduction to PowerShell for Investigators

    • Chet Hosmer
    Pages 1-21

  3. PowerShell Pipelining

    • Chet Hosmer
    Pages 23-43

  4. PowerShell Scripting Targeting Investigation

    • Chet Hosmer
    Pages 45-87

  5. Python and Live Investigation/Acquisition

    • Chet Hosmer
    Pages 89-119

  6. PowerShell/Python Investigation Example

    • Chet Hosmer
    Pages 121-145

  7. Launching Python from PowerShell

    • Chet Hosmer
    Pages 147-179

  8. Loose Ends and Future Considerations

    • Chet Hosmer
    Pages 181-187

  9. Back Matter

    Pages 189-216
    Download chapter PDF
Back to top

Authors and Affiliations

  • Longs, USA

    Chet Hosmer

About the author

Chet Hosmer is the founder of Python Forensics, Inc., a non-profit organization focused on the collaborative development of open source investigative technologies using Python and other popular scripting languages. He has been researching and developing technology and training surrounding forensics, digital investigation, and steganography for decades. He has made numerous appearances to discuss emerging cyber threats, including National Public Radio's Kojo Nnamdi show, ABC's Primetime Thursday, and ABC News Australia. He has also been a frequent contributor to technical and news stories relating to cyber security and forensics with IEEE, The New York Times, The Washington Post, Government Computer News, Salon.com, and Wired Magazine.

Chet is the author of six recent books: Defending IoT Infrastructures with the Raspberry Pi (Apress), Passive Python Network Mapping, Python Forensics, Integrating Python with Leading ComputerForensic Platforms, Data Hiding (co-authored with Mike Raggo), Executing Windows Command Line Investigation (co-authored with Joshua Bartolomie and Rosanne Pelli).

Chet serves as a visiting professor at Utica College in the cybersecurity graduate program where his research and teaching focus on advanced steganography/data hiding methods and the latest active cyber defense methods and techniques. He also is an adjunct professor at Champlain College, where his research and teaching focus is on applying Python and other scripting languages to solve challenging problems in digital investigation and forensics.

Chet resides on the Grand Strand of South Carolina with his wife Janet, son Matthew, two Labrador retrievers (Bailey and Vinny), and feline tenants Lucy, Sasha, and Evander.

Bibliographic Information

  • Book Title: PowerShell and Python Together

  • Book Subtitle: Targeting Digital Investigations

  • Authors: Chet Hosmer

  • DOI: https://doi.org/10.1007/978-1-4842-4504-0

  • Publisher: Apress Berkeley, CA

  • eBook Packages: Professional and Applied Computing, Apress Access Books, Professional and Applied Computing (R0)

  • Copyright Information: Chet Hosmer 2019

  • Softcover ISBN: 978-1-4842-4503-3Published: 30 March 2019

  • eBook ISBN: 978-1-4842-4504-0Published: 30 March 2019

  • Edition Number: 1

  • Number of Pages: XVI, 216

  • Number of Illustrations: 91 b/w illustrations

  • Topics: Security, Python

Publish with us

Policies and ethics

Back to top