File System Analysis Report - Data Science and Digital Forensics

Verified

Added on 2022/08/29

AI Summary

This report delves into the critical field of file system analysis within digital forensics. It explores the recovery of deleted data, the structure of file allocation tables, and directory entities, highlighting the importance of understanding these elements for effective data retrieval. The report emphasizes the use of forensic tools, including hex editors, to analyze data structures and identify user behavior. It covers the analysis of flash file systems, the challenges of dealing with incomplete data, and the need for in-depth analysis to reconstruct user actions. The report also touches on the importance of understanding file systems for various applications and the organization of data within storage devices, including sectors and blocks. It draws upon existing literature to provide a well-rounded understanding of the subject.

Running head: FILE SYSTEM ANALYSIS
FILE SYSTEM ANALYSIS
Name of the Student
Name of the University
Author Note:

Paraphrase This Document

Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser

1FILE SYSTEM ANALYSIS
The current tools in forensic are required for analysis of file system aims to cover data
which belongs to the information that has been deleted. All the required tools are not completely
have an idea of the media from where the data completely originally came. The overall method
highlight different physical properties can enhance the overall process of recovery. I have
learned that that flash file system comprises of various forms of similar data as the flash memory
which cannot be erased in such smaller quantity. All the data collected from the flash memory
may not have all the additional data which belongs to the past state of the file system. I have
learned that file allocation tables and directory entities are considered to be example of this kind
of artifacts. All the required items are updated on a frequent basis and stand out to be relative
small in comparison to block flash memory size. It merely comes into picture in various physical
aspects required for the provided logical domain. It mere helps in having idea regarding various
version.
One of the common tool which will highlight current version of directory that is forensic
tool provides current version of directory. Some of the files are marked like deleted but the other
version have directory data which have significant amount of user behavior that needs to be
reconstructed. File system analysis result from the physical acquisition aim to give much more of
the enough data in this case. It is vital when file system have either little or even no other kind
support. I have learned that forensic analyst need to carry out much deep analysis. It merely
requires huge amount of time which stand out to be much tedious. It mere requires much more
deep analysis and complete idea regarding the data structure. I have noticed that this particular
kind of analysis stand out to be bit amazing. Some of the vital information with respect to
individual case is being learned. The collected knowledge is applied to most of case scenario in
the upcoming days.

2FILE SYSTEM ANALYSIS
I have learned that forensic analysts need to be completely comfortable by making use of
hex editor, which needs to be arise. It merely helps the analysts to understand the type of data
being stored, patterns for looking, identifying, and understood the complete data structure. File
system can be considered to be index of database containing the physical location of each and
every data. All the required data are completely organized in the location called folder known as
directories. It merely comprises of other kind of folder and files. I have learned that files on the
storage device are completely kept in sectors. All the required sectors are considered to be
unused for storing data. It merely comprises of collection of sectors which are known as blocks.
A file system does not only store the file but also has the required information about it. I have
learned that most of application which an individual come into contact need a file system for
each of the work. All the programs are completely based on file system.

3FILE SYSTEM ANALYSIS
Bibliography
Casey, E., 2018. Digital stratigraphy: contextual analysis of file system traces in forensic
science. Journal of forensic sciences, 63(5), pp.1383-1391.
Patil, D.N. and Meshram, B.B., 2016. Digital forensic analysis of ubuntu file system. Int. J.
Cyber Secur. Digit. Forensics, 4(5), pp.175-186.
Vandermeer, Y., Le-Khac, N.A., Carthy, J. and Kechadi, T., 2018. Forensic analysis of the exfat
artefacts. arXiv preprint arXiv:1804.08653.
Wahyudi, E., Riadi, I. and Prayudi, Y., 2018. Virtual Machine Forensic Analysis And Recovery
Method For Recovery And Analysis Digital Evidence. International Journal of Computer
Science and Information Security, 16.