1 / 10

Digital Forensics

Digital Forensics. Hardware components. Motherboard System bus CPU ROM RAM HDD Input devices Output devices. Storing and Retrieving Data. OS Formatting and Partitioning the HDD Mapping the HDD Sectors Clusters Tracks Cylinders. Documenting the Electronic Crime Scene.

nishi
Download Presentation

Digital Forensics

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Digital Forensics

  2. Hardware components • Motherboard • System bus • CPU • ROM • RAM • HDD • Input devices • Output devices

  3. Storing and Retrieving Data • OS • Formatting and Partitioning the HDD • Mapping the HDD • Sectors • Clusters • Tracks • Cylinders

  4. Documenting the Electronic Crime Scene • Document the scene • Photograph overall layout • Photograph all connections • Decide on data acquisition method • Forensic Image Acquisition • Must not alter data in anyway • Can’t just boot up or will alter HDD • Remove HDD and place in forensic computer • Use MD5 or SHA algorithms to fingerprint disk

  5. Analysis of Electronic Data • Visible data • Data/Work product files • Swap file data • Temporary files • Latent Data • Slack space • RAM slack • File slack • Unallocated space • Defragmenting • Swap files/swap space • Deleted files

  6. The Internet • Browsers • URL • Hypertext • Bookmark • Search engines • Email • Mailing lists • Newsgroups

  7. The World-Wide Web • Internet cache • Cookies • Internet history • Bookmarks/Favorites

  8. Forensic Analysis of Internet Data • IP addresses • Email, Chat and IM • Hacking • Firewall

  9. Forensic Investigation of Internet Communications • Connections • Modem • Broadband • DSL • Wi-Fi • Routers • VoIP • ISPs • IP • Domains

  10. Forensic Psychiatry/Psychology • Psychological testing • Rorschach • Thematic-Apperception Test • Personality Inventories • Intellectual and Cognitive Assessment • Altered State Interviews

More Related