CSE4004 Digital Forensics Keyword Search

Uploaded by

ADITYA SINGH

0% found this document useful (0 votes)

35 views12 pages

Original Title

18BCE0595_VL2020210504405_AST02 (2)

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

35 views12 pages

CSE4004 Digital Forensics Keyword Search

Uploaded by

ADITYA SINGH

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 12

Search inside document

CSE4004: Digital Forensics

Keyword Search - USB Drive

& Disk
Name: Aditya Singh
Reg. no:18BCE0595

Autopsy is an open-source digital forensics tool developed by Basis Technology, first released
in 2000. It is a free to use and quite efficient tool for hard drive investigation with features like
multi-user cases, timeline analysis, registry analysis, keyword search, email analysis, media
playback, EXIF analysis, malicious file detection and much more.It’s a tool that uses the
forensic platform and graphical interfaces like Sleuth Kit and other more forensic tools. We
will use the Keyword Search Tool for this assignment.

System Information:

Operating System: Windows 10

System Manufacturer: Acer
System Type: x64 based PC

Software Used:

Autopsy 4.17.0

The disk image used for the keyword search is downloaded from the following site:
http://dftt.sourceforge.net/test11/index.html
A. Disk Image Capture
Disk Imaging is the process of copying a hard drive as a backup copy or an archive. The process
entails copying all the data stored on the source drive including data like the master boot record and
table allocation information. This image, however, is a single file that can be stored in any storage
device and not necessarily an identical hard drive. In the event that a restoration is necessary, the
image will have to be applied to the hard drive. Unlike the cloned drive, system restore is not
possible by just copying the image file on the hard drive. A software imaging program will have to
be employed to install and open the image on the hard drive. The backup device can therefore be
used to store multiple image files, unlike the cloned drive where only a single clone can be stored on
the duplicate drive.
1. Open Capture Tool and load Disk.
2. Capture Complete
3. Captured Image Details

File configuration

Email address
Exif metadata

Metadata
4. List of Search Results
USB Drive
USB drives can often hold key evidence in an investigation phase. The goal is to analyze and
investigate the drive to find out if there is suspicious data and evidence relating to the blackmailing.The
starting point of the analysis was a .dd image, a bit to bit copy of the original USB drive. It’s good
practise to make an image/copy of the device for further analysis and keep the original USB drive for
evidence. Furthermore, to be sure that the image is the same copy of information a integrity check can
be done.
1. Start the application.
2. Capture Complete

3. Files obtained from the scanning:

Email address
User content suspected
Metadata

Files desciption
4. Search for a keyword using search tools.

5. List of files with the search term “PDC” in USB Drive image.

FTK Imager - Acquiring a Disk Image
Document10 pages
FTK Imager - Acquiring a Disk Image
hoang nam
No ratings yet
Best Free Open Source Data Recovery Apps for Mac OS English Edition
From Everand
Best Free Open Source Data Recovery Apps for Mac OS English Edition
Cyber Jannah Sakura
No ratings yet
Forensic Plagerism
Document8 pages
Forensic Plagerism
too robaa
No ratings yet
Computer Forensics Process For Beginners
Document8 pages
Computer Forensics Process For Beginners
Sachin Jung Karki
No ratings yet
Digital Forensics Case Project Solution
Document11 pages
Digital Forensics Case Project Solution
Qomindawo
No ratings yet
Data Formats
Document89 pages
Data Formats
Rachit Anand
No ratings yet
PIVOT Lab - Forensic Image Extraction: What Is It?
Document12 pages
PIVOT Lab - Forensic Image Extraction: What Is It?
marcus_fabio
No ratings yet
Imaging Using FTK Imager - Shweta A. Chawla
Document7 pages
Imaging Using FTK Imager - Shweta A. Chawla
Toan Phan Thanh
No ratings yet
Tool Comparison
Document8 pages
Tool Comparison
AndresMenker
No ratings yet
Digital Forensics Tools for Investigations
Document51 pages
Digital Forensics Tools for Investigations
israa
No ratings yet
Computer Forensic Investigation: Learnhacking - Online
Document14 pages
Computer Forensic Investigation: Learnhacking - Online
Deep Chandrakar
No ratings yet
Digital Forensics Course Objectives and Modules
Document10 pages
Digital Forensics Course Objectives and Modules
Nigel John
No ratings yet
Task
Document5 pages
Task
Roy Ayub Microgenious
No ratings yet
Intelligence Report Final
Document145 pages
Intelligence Report Final
reputation.com.ng
No ratings yet
DVR Forensic Analysis
Document12 pages
DVR Forensic Analysis
a6355145
No ratings yet
Crash Course in Digital Forensics
Document20 pages
Crash Course in Digital Forensics
Alvin Cardona
No ratings yet
p3 Utility Software
Document2 pages
p3 Utility Software
api-451667969
No ratings yet
How To Recover Deleted Files: Your Step-By-Step Guide To Recovering Deleted Files
From Everand
How To Recover Deleted Files: Your Step-By-Step Guide To Recovering Deleted Files
HowExpert
No ratings yet
Semester 7 Digital Forensics (3170725) : Q 1. Discuss File Carving and Deleted Data
Document13 pages
Semester 7 Digital Forensics (3170725) : Q 1. Discuss File Carving and Deleted Data
Sanket parekh
No ratings yet
DF Final
Document24 pages
DF Final
Ishika Patel
No ratings yet
Study On Forensic Analysis of Physical Memory: Liming Cai, Jing Sha, Wei Qian
Document4 pages
Study On Forensic Analysis of Physical Memory: Liming Cai, Jing Sha, Wei Qian
kamelancien
No ratings yet
Understanding Disk Partitions and Making Disk Image Backups
Document21 pages
Understanding Disk Partitions and Making Disk Image Backups
Andiebou Salameda
No ratings yet
Marsad Forensic Assignment
Document35 pages
Marsad Forensic Assignment
Marsad Kibria
No ratings yet
CS Practical 8
Document31 pages
CS Practical 8
noreply.myworkspace
No ratings yet
Data Acquisition
Document31 pages
Data Acquisition
excitekarthik
No ratings yet
15 BEST Digital Forensic Tools in 2020 (Free - Paid)
Document9 pages
15 BEST Digital Forensic Tools in 2020 (Free - Paid)
Darmoni Laishram
100% (1)
5.2 Utility Software
Document2 pages
5.2 Utility Software
Mithun Kumar
No ratings yet
Unt 5
Document17 pages
Unt 5
Om Koli
No ratings yet
Unit 5
Document4 pages
Unit 5
Saloni Chaudhary
No ratings yet
Digital Forensics Tools Kali
Document18 pages
Digital Forensics Tools Kali
Ghost Phisher
No ratings yet
Task Sheet Title: Installing An Application Performance Objective
Document2 pages
Task Sheet Title: Installing An Application Performance Objective
elma anacleto
No ratings yet
File Carving: Dig Ital Forensics
Document10 pages
File Carving: Dig Ital Forensics
asmit gupta
No ratings yet
Digital Forensics Experiment - 1: Study and Learning of Digital Forensic Tool
Document7 pages
Digital Forensics Experiment - 1: Study and Learning of Digital Forensic Tool
Kshitij Singla
No ratings yet
4 5832631030384691806
Document16 pages
4 5832631030384691806
Tarek Hamze
No ratings yet
1-Uses of FTK Imager
Document20 pages
1-Uses of FTK Imager
narsaline antero
No ratings yet
ACFrOgDwa0hV9CxHu8wN5kpOYQaOak_PDjONIJeICkar2PQjrk0c20kySND78BLjWlQU-71NVz7WMUzLSVnKOQz_Af0QarS4pQy41ggBj25TjknJSHxY5peYBGY1PiZVGLA757rzdOKA3ocv7LDVfuf0jL-o53rprDYrIRBg2A==
Document9 pages
ACFrOgDwa0hV9CxHu8wN5kpOYQaOak_PDjONIJeICkar2PQjrk0c20kySND78BLjWlQU-71NVz7WMUzLSVnKOQz_Af0QarS4pQy41ggBj25TjknJSHxY5peYBGY1PiZVGLA757rzdOKA3ocv7LDVfuf0jL-o53rprDYrIRBg2A==
gowrishankar nayana
No ratings yet
Analyzing Disk Images in Kali Autopsy
Document8 pages
Analyzing Disk Images in Kali Autopsy
huynhphuc112
No ratings yet
Cyber Forensics Shailesh
Document74 pages
Cyber Forensics Shailesh
Shailesh Bhagat
No ratings yet
Creating and Using Disk Images
Document14 pages
Creating and Using Disk Images
Ako Si Jhadong
No ratings yet
1.5.2 Utility Software PDF
Document2 pages
1.5.2 Utility Software PDF
Blessed Endibye Kanyemba
No ratings yet
FTK Imager Primer
Document24 pages
FTK Imager Primer
Jason Keys
No ratings yet
The Impact of Custom ROM Backups On Android External Storage Eras
Document9 pages
The Impact of Custom ROM Backups On Android External Storage Eras
Si Kucing Comell
No ratings yet
AOMEI Backupper Standard v6.8.0 Free - Mediaket
Document2 pages
AOMEI Backupper Standard v6.8.0 Free - Mediaket
Dejan N
No ratings yet
Changing Window Registry
Document32 pages
Changing Window Registry
JULIUS VICTOR SAVELLANO
No ratings yet
Bassetti - A Digital Forensic Report
Document4 pages
Bassetti - A Digital Forensic Report
xetnu
No ratings yet
Gen. Trias Skill Builders: Ict 10 - Computer System Servicing Quarter 1
Document7 pages
Gen. Trias Skill Builders: Ict 10 - Computer System Servicing Quarter 1
Jelly Beans
No ratings yet
p552 Lab Report
Document4 pages
p552 Lab Report
Preet Dhillon
No ratings yet
CNS 320 Week7 Lecture
Document62 pages
CNS 320 Week7 Lecture
alb3rtlin
100% (1)
20 Herramientas de Forense - Win - Linux
Document24 pages
20 Herramientas de Forense - Win - Linux
Alma Yaritza
No ratings yet
CSE4004 Digital Forensics Assignment 3 Analyzes Files with Autopsy
Document11 pages
CSE4004 Digital Forensics Assignment 3 Analyzes Files with Autopsy
ADITYA SINGH
No ratings yet
Analytical Forensic Investigation With Data Carving Tools
Document12 pages
Analytical Forensic Investigation With Data Carving Tools
International Journal of Innovative Science and Research Technology
No ratings yet
6 Data Recovery Tools For SD Cards
Document8 pages
6 Data Recovery Tools For SD Cards
vetvet
No ratings yet
Consumers Test Choosing Data Recovery Software
Document4 pages
Consumers Test Choosing Data Recovery Software
dasxax
No ratings yet
Digital Forensics Report
Document36 pages
Digital Forensics Report
ehtisham sadiq
No ratings yet
Storage Memory
Document3 pages
Storage Memory
SADRONU
No ratings yet
Anti-Forensic Analysis of A Removable Disk
Document13 pages
Anti-Forensic Analysis of A Removable Disk
Slaimi Rania
No ratings yet
MCTS 70-680 Exam Questions: Microsoft Windows 7, Configuring
From Everand
MCTS 70-680 Exam Questions: Microsoft Windows 7, Configuring
Eddie Vi
Rating: 3.5 out of 5 stars
3.5/5 (2)
Active@ Boot Disk User Guide
Document87 pages
Active@ Boot Disk User Guide
OBTDean
No ratings yet
Cyber Forensics Tools
Document4 pages
Cyber Forensics Tools
Jeya Balasubramani
100% (1)
Lab4 MarE
Document4 pages
Lab4 MarE
Jayson Cabello
No ratings yet
Submitted By:: Prepared For
Document19 pages
Submitted By:: Prepared For
ADITYA SINGH
No ratings yet
WINSEM2016-17 ESP1001 TH 4676 15-FEB-2017 RM001 Hay PDF
Document1 page
WINSEM2016-17 ESP1001 TH 4676 15-FEB-2017 RM001 Hay PDF
Vasu Sharma
No ratings yet
CSE4004: Digital Forensics Assignment 6: Name: Aditya Singh Reg. no:18BCE0595
Document12 pages
CSE4004: Digital Forensics Assignment 6: Name: Aditya Singh Reg. no:18BCE0595
ADITYA SINGH
No ratings yet
Digital Forensic: Scenario
Document9 pages
Digital Forensic: Scenario
ADITYA SINGH
No ratings yet
CSE4004: Digital Forensics Assignment 5: Creating Case File
Document12 pages
CSE4004: Digital Forensics Assignment 5: Creating Case File
ADITYA SINGH
No ratings yet
Configure The "PHP - Ini" File: !doctype HTML Body Form Input Input /form /body /HTML
Document3 pages
Configure The "PHP - Ini" File: !doctype HTML Body Form Input Input /form /body /HTML
ADITYA SINGH
No ratings yet
Cse2005 - Operating Systems
Document10 pages
Cse2005 - Operating Systems
ADITYA SINGH
No ratings yet
CSE4004 Digital Forensics Assignment 3 Analyzes Files with Autopsy
Document11 pages
CSE4004 Digital Forensics Assignment 3 Analyzes Files with Autopsy
ADITYA SINGH
No ratings yet
Parallelizing - K Means Clustering: A Project Report
Document32 pages
Parallelizing - K Means Clustering: A Project Report
ADITYA SINGH
No ratings yet
CSE4001 Parallel Lab: OpenMP Reduction Program
Document1 page
CSE4001 Parallel Lab: OpenMP Reduction Program
ADITYA SINGH
No ratings yet
Exercises695Clus Solution - Doc Exercises695Clus Solution
Document7 pages
Exercises695Clus Solution - Doc Exercises695Clus Solution
Master Id
No ratings yet
VL2020210107075 Ast02
Document1 page
VL2020210107075 Ast02
ADITYA SINGH
No ratings yet
VL2020210107075 Ast02
Document1 page
VL2020210107075 Ast02
ADITYA SINGH
No ratings yet
Exercises695Clus Solution - Doc Exercises695Clus Solution
Document7 pages
Exercises695Clus Solution - Doc Exercises695Clus Solution
Master Id
No ratings yet
FALLSEM2020-21 CSE4001 ETH VL2020210104170 Reference Material I 02-Sep-2020 Module4-MessagePassing 1
Document12 pages
FALLSEM2020-21 CSE4001 ETH VL2020210104170 Reference Material I 02-Sep-2020 Module4-MessagePassing 1
ADITYA SINGH
No ratings yet
Information and Data Security: Dr. B. Chandra Mohan
Document16 pages
Information and Data Security: Dr. B. Chandra Mohan
ADITYA SINGH
No ratings yet
Risk Overview: Dr. B. Chandra Mohan
Document19 pages
Risk Overview: Dr. B. Chandra Mohan
ADITYA SINGH
No ratings yet
FALLSEM2019-20 CSE2004 ETH VL2019201006611 Reference Material II 29-Jul-2019 08203729 PDF
Document5 pages
FALLSEM2019-20 CSE2004 ETH VL2019201006611 Reference Material II 29-Jul-2019 08203729 PDF
ADITYA SINGH
No ratings yet
Assessment - 3: Web Structure Mining, Supervised Learning
Document1 page
Assessment - 3: Web Structure Mining, Supervised Learning
ADITYA SINGH
No ratings yet
MGT1022 Lean Startup Management Assignment - V
Document3 pages
MGT1022 Lean Startup Management Assignment - V
ADITYA SINGH
No ratings yet
MGT1022 Lean Startup Management: Assignment - V
Document1 page
MGT1022 Lean Startup Management: Assignment - V
ADITYA SINGH
No ratings yet
3.1 Information Security Policies: Misuse, Unauthorized Disclosure or Modification
Document4 pages
3.1 Information Security Policies: Misuse, Unauthorized Disclosure or Modification
ADITYA SINGH
No ratings yet
MAT2002 Similarity and Orthogonal Transformations
Document5 pages
MAT2002 Similarity and Orthogonal Transformations
ADITYA SINGH
No ratings yet
FALLSEM2020-21 CSE3501 ETH VL2020210102628 Reference Material I 10-Sep-2020 Risk Management
Document117 pages
FALLSEM2020-21 CSE3501 ETH VL2020210102628 Reference Material I 10-Sep-2020 Risk Management
ADITYA SINGH
No ratings yet
WINSEM2019-20 CSE1004 ETH VL2019205001147 Reference Material II 06-Jan-2020 Hamming Code PDF
Document4 pages
WINSEM2019-20 CSE1004 ETH VL2019205001147 Reference Material II 06-Jan-2020 Hamming Code PDF
ADITYA SINGH
No ratings yet
OpenMP Producer-Consumer with Queues and Atomic Directives
Document46 pages
OpenMP Producer-Consumer with Queues and Atomic Directives
ADITYA SINGH
No ratings yet
Reference Material II 01-Aug-2019 Fixed-Point and Floating-Point Representation
Document21 pages
Reference Material II 01-Aug-2019 Fixed-Point and Floating-Point Representation
ADITYA SINGH
No ratings yet
Cache Solved Examples PDF
Document3 pages
Cache Solved Examples PDF
Harshavardhan Virendra Malla
No ratings yet
Cse1006 Blockchain-And-cryptocurrency-technologies TH 1.0 0 Blockchain and Cryptocurrency Technologies
Document2 pages
Cse1006 Blockchain-And-cryptocurrency-technologies TH 1.0 0 Blockchain and Cryptocurrency Technologies
PRANAV KUMAR 17BEC0473
No ratings yet
RUDN ENCLAVE Complete Map PDF
Document1 page
RUDN ENCLAVE Complete Map PDF
Mian Muhammad Bakhsh Institute
No ratings yet
Loading, Ripping, and Playing Wii Game Backups From An External USB Hard Disk Drive
Document8 pages
Loading, Ripping, and Playing Wii Game Backups From An External USB Hard Disk Drive
Bolivar Donato
No ratings yet
For Kids Fast Grades Offers The Best Tutoring
Document3 pages
For Kids Fast Grades Offers The Best Tutoring
Fads Group
No ratings yet
PROGRAMMING FOR COMPUTING: FUNCTIONS AND MODULAR PROGRAMMING
Document18 pages
PROGRAMMING FOR COMPUTING: FUNCTIONS AND MODULAR PROGRAMMING
Alif Izwan
No ratings yet
PRACTICAL-LIST Advance Java
Document8 pages
PRACTICAL-LIST Advance Java
69 Snehal Mahamuni
No ratings yet
PLSQL Triggers - Audit Table
Document2 pages
PLSQL Triggers - Audit Table
Funny Momentz
No ratings yet
Logical & Physical Modeling
Document6 pages
Logical & Physical Modeling
Shri
0% (1)
BPC Netweaver Utilizes ROLAP To Store Data
Document2 pages
BPC Netweaver Utilizes ROLAP To Store Data
Priyanka
No ratings yet
M365 BPWhat Can Users Do To Secure
Document5 pages
M365 BPWhat Can Users Do To Secure
Avez Ahmed
No ratings yet
Upgrade Pa80 OS & Resources (PC/Mac
Document7 pages
Upgrade Pa80 OS & Resources (PC/Mac
Cristi Sava
No ratings yet
Operating Systems LINUX Lab Manual
Document131 pages
Operating Systems LINUX Lab Manual
Mindless Journey
50% (2)
Kali Tools List
Document24 pages
Kali Tools List
Ye Zeiya Shein
No ratings yet
Documentation of Online Banking System
Document48 pages
Documentation of Online Banking System
bapu2304
89% (9)
RPG SUBFILE PROGRAMMING
Document32 pages
RPG SUBFILE PROGRAMMING
Ajay Kumar Akurathi
No ratings yet
C Programming Assignment Washing Machine System
Document40 pages
C Programming Assignment Washing Machine System
Ali Reza Yassi
81% (32)
6425C ENU Beta TrainerHandbook Part3
Document568 pages
6425C ENU Beta TrainerHandbook Part3
Galo Salinas
No ratings yet
Memory Management With Bitmaps
Document37 pages
Memory Management With Bitmaps
suneerav17
No ratings yet
Own Cloud Admin Manual
Document170 pages
Own Cloud Admin Manual
LonaBrochen
No ratings yet
Workflow Usage Best Practices
Document40 pages
Workflow Usage Best Practices
João Caetano
No ratings yet
CL01 FusionSphere 6.3 Overview
Document29 pages
CL01 FusionSphere 6.3 Overview
riyasathsafran
No ratings yet
CUS2.Creating Local Reference Fields
Document16 pages
CUS2.Creating Local Reference Fields
MrCHANTHA
50% (2)
Ldom
Document2 pages
Ldom
Hieu Tran
No ratings yet
Application Designer's Guide
Document652 pages
Application Designer's Guide
DiegoCebrian
No ratings yet
BSE Synopsis Edited 22.03.2021
Document48 pages
BSE Synopsis Edited 22.03.2021
abdrhmn200377
No ratings yet
RDS - Deep Dive On Amazon Relational Database Service (RDS)
Document34 pages
RDS - Deep Dive On Amazon Relational Database Service (RDS)
Stephen Efange
No ratings yet
Machine Dependent Assembler Features
Document26 pages
Machine Dependent Assembler Features
RAJARAM
No ratings yet
Applying Automated Chatbots To Internet of Things
Document12 pages
Applying Automated Chatbots To Internet of Things
riddhi maniktalia
No ratings yet
CS113 Spring 2015 Lecture Notes
Document657 pages
CS113 Spring 2015 Lecture Notes
Ritu Patel
No ratings yet
Sentinel Hardware Keys
Document2 pages
Sentinel Hardware Keys
sally D.allah
No ratings yet