logo

Principles of Digital Forensics PDF

22 Pages1932 Words375 Views
   

Added on  2020-05-28

Principles of Digital Forensics PDF

   Added on 2020-05-28

ShareRelated Documents
PRINCIPLES OF DIGITAL FORENSICS
Principles of Digital Forensics PDF_1
Table of Contents1.Introduction.......................................................................................................................................22.Case.....................................................................................................................................................23.Analysis of Forensic Tools.................................................................................................................24.Investigation Procedure....................................................................................................................45.Findings..............................................................................................................................................86.Conclusion........................................................................................................................................187.References........................................................................................................................................191
Principles of Digital Forensics PDF_2
1.IntroductionDigital forensics is used for investigating the digital devices like hard disk image, pen driveimage and computer memory dump. Investigation gives lot of useful results that can be used asevidences in the court of law. Analytical skills , Computer science knowledge, Good knowledgeabout the cyber security and cyber security laws of the land, Good management andorganizational skills, effective communication skills are needed for a good digital forensicofficer. A crime case study will be investigated in this report. The digital forensic tools that canbe used for investigating the hard disk will be studied. Suitable tools will be used for theinvestigation. Investigation results will be shared with evidences. Suitable conclusions will bemade based on the investigation results.2.CaseMiss Chew got murdered. Police arrested Kim and Kim confessed the crime and said thekilling assignment came from Liew. Kims computer seized and the hard disk images were sentfor forensic investigation. Lot of tools can be used for investigating the hard disk images.Specific tools are used in this case and results are obtained("7 Best Computer Forensics Tools",2018).3.Analysis of Forensic ToolsWith premise on analyzing disk images & breaking into suspicious or incriminating evidences that may have been deleted or hidden, Digital Forensics Tools are used for Viewing Image Contents in Windows. The case investigation will witness learning on the use of diverse advanced disk analysis tools including Forensic Tool Kit (FTK) and ProDiscover Basic with practical, real-life experiments. During the analysis process, the investigator will through these tools be expected to search for information pertinent to the case being compiled. Forensic Tool kit is an AcessData program specifically for digitally based investigations. On the other hand, ProDiscover Basic is an advanced reporting tool and is a perfect option for generating reports 2
Principles of Digital Forensics PDF_3
and creating disk images. Unlike the FTK, ProDiscover is limited in the aspect of showing most deleted files or hidden partitions.The FTK free versions are a more reasonable option considering the robust version is more expensive. However, the more robust one allows for password recovery, encryption protection and analysis of Windows and MAC OS. 3
Principles of Digital Forensics PDF_4
4.Investigation ProcedureThe Analyzing Disk Image File is done in Pro Discover Basic 1. Open Pro Discover basic. 2. At login screen in OS(Windows 8) utilize word.3. Dispatch Pro Discover basic software from work area. The screen will open requesting dataregarding another or existing undertaking. Meanwhile, this is another venture, and will round outdata for number name. At that point click the option named Open (Lynch & Duval, 2011).4
Principles of Digital Forensics PDF_5
4. The new undertaking will then be opened. Now, nothing is there to examine since the ventureand is void.5.To include 'Georges Drive Image.001' to the undertaking for the purpose of examination,explore to 1.Action 2.Add 3.Image File. 6.Open 'Y:\ Investigative Drive', and select the Georges Drive Image.001. At that pointclick Open. The drive has now been added to the venture. Tap on Pictures which wassettled underneath Content Opinion in left route menu. The circle picture is provided(Houck & Siegel, 2011). 6. For taking a gander at the substance of Georges Drive Image, grow '+' image on one side ofImages until achieving C:. Substance of circle show up in correct side examination window. Youcan click into every envelope to see substance("Best computer forensic tools. Top forensic datarecovery apps", 2018). 5
Principles of Digital Forensics PDF_6

End of preview

Want to access all the pages? Upload your documents or become a member.

Related Documents
Digital Forensics - Assignments
|39
|3425
|103

Cyber Forensic and Information Technology Assignment
|28
|2755
|50

Data acquisition methods for digital forensics
|11
|1180
|18

Forensic Network Tools: Win hex, Pro discover Basic, Hex Workshop
|15
|1419
|320

Demonstration of Autopsy
|22
|1475
|22

MN624 Digital Forensics - Assignment
|19
|1225
|41