Ask a question from expert

Ask now

SIT703 Advanced Digital Forensics Assignment

22 Pages1357 Words301 Views
   

Deakin University

   

SIT703 Advanced Digital Forensics Assignment (SIT703)

   

Added on  2019-11-08

SIT703 Advanced Digital Forensics Assignment

   

Deakin University

   

SIT703 Advanced Digital Forensics Assignment (SIT703)

   Added on 2019-11-08

BookmarkShareRelated Documents
ADVANCED DIGITALFORENSIC
SIT703 Advanced Digital Forensics Assignment_1
SANS ,NSA , Saliman Manap got very good root kits.F-Secure Blacklight is one of the root kit eliminator.1
SIT703 Advanced Digital Forensics Assignment_2
Malwarebytes Anti-Malware is another root kit scanner and remover.GMER is a good rootkit scanner and remover2
SIT703 Advanced Digital Forensics Assignment_3
TDSSKiller3
SIT703 Advanced Digital Forensics Assignment_4
AnswerScanning is conducted using GMER application.ExplanationArif's machine is checked against the rootkit programs. The rootkit programs have the capacity of altering the investigation results. For the purpose of checking if the machine is free of rootkit programs, scan through the machine. Scanning is conducted for all the available programs and checked for rootkits. To conduct the check, GMER is used. GMER is an application which is designed to detect and remove the rootkits. GMER conducts scan on hidden processes, hidden files, inline hooks, and hidden alternate data streams. First GMER application has to be installed on the system that has to be checked against the rootkits. After installing GMER, scan has to be conducted to through GMER and threats are highlighted in red color.4
SIT703 Advanced Digital Forensics Assignment_5
Windows event viewers are studied ("Collect and analyze Windows Event logs in OMS Log Analytics", 2017)AnswerAppEvent.EvtAppEvent.Evt is a log file and it is expanded as the Application Event logs.Application events are nothing but the report of the programs and their problems.Internet.evtInternet.evt is a log file and is expanded as the Internet Event Logs.SecEvent.Evt5
SIT703 Advanced Digital Forensics Assignment_6

End of preview

Want to access all the pages? Upload your documents or become a member.

Related Documents
Assignment of Digital Forensics
|18
|1528
|292

SIT703: Advanced Digital Forensics - Case Investigation Report
|35
|2867
|282

Advanced Digital Forensics Investigation | Desklib
|31
|1904
|361