DIGITAL FORENSIC TOOLS

Submitted by
T.SAI VENKAT(9919004350)
T.CHANDU(9919004274)
K.KALKI(9919004357)

V.YASHWANTH(9919004299)

In partial fulfillment for the award of the degree

of

BACHELOR OF TECHNOLOGY
IN
Computer Science And Engineering

SCHOOL OF KALASALINGAM ACADEMY OF RESEARCH AND

EDUCATION
DEPARTMENT OF COMPUTER SCIENCE AND ENGINEERING

KALASALINGAM ACADEMY OF RESEARCH AND

EDUCATION
KRISHNANKOIL 626 126
May 2021
 Major Design Experience Information

Student Details : T.SAI VENKAT(9919004350)

T.CHANDU(991900474)
K.KALKI(9919004357)
V.YASHWANTH(991900429
9)

Project Supervisor : RAJU

Project Title : Digital Forensic tools

Program : NONE
Concentration Area

Constraints : User friendly

Project Related to : Cyber security.

 DECLARATION

I hereby certify that the work which is being presented in the B.Tech. Community
Service Project Report entitled “DIGITAL FORENSIC TOOLS” in partial
fulfillment of the requirements for the award of the Bachelor of Technology in
cse and submitted to the Department of cse of Kalasalingam Academy of
Research and Education (Deemed to be University) – Tamil Nadu., is an
authentic record of my own work carried out during a period from Aug 2021 to
Dec 2021 under the supervision of M.RAJA .

The matter presented in this thesis has not been submitted by me for
the award of any other degree elsewhere.

Signature of Candidates
T.SAI VENKAT(9919004350)
K.KALKI(9919004357)
T.CHANDU(9919004274)
V.YASHWANTH(9919004299
)

This is to certify that the above statement made by the candidate

is correct to the best of my knowledge.

Signature of
supervisor
Date:20/11/2021 Name &
Designation
Project Supervisor(s)
M.RAJA
Head
Department of Computer Science And Engineering

Kalasalingam AcademyofResearch and Education (Deemed to be University)

 KALASALINGAM ACADEMY OF RESEARCH AND
EDUCATION

SCHOOL OF ENGINEERING

DEPARTMENT OF COMPUTER SCIENCE AND ENGINEERING

BONAFIDE CERTIFICATE

Certified that this project report “DIGITAL FORENSIC TOOLS”is the

bonafide work of
“T.SAIVENKAT(9919004350),T.CHANDU(9919004274),K.KALKI(991900435
7),
V.YASHWANTH(9919004299)” who carried out the project work
under mysupervision.

Signature Signature
Dr.A.Francis Saviour Devaraj RAJA
Head of the Department Project Supervisor
Associate Professor Assistant Professor
Department of CSE Department of CSE
Kalasalingam Academy of Kalasalingam Academy of
Research and Education Research and Education

Krishnankoil-626126 Krishnankoil-626126
Virudhunagar District. Virudhunagar District.

Project Viva-voce held on

Internal Examiner External Examiner

 ACKNOWLEDGEMENT

First and foremost, we thank the ‘Supreme Power’ for the immense grace

showered on us which enabled us to do this project. We take this opportunity to

express by sincere thanks to the late, “Kalvivallal” Thiru T. Kalasalingam,

Chairman, Kalasalingam Group of Institutions, “Illayavallal” Dr. K.

Sridharan,Ph.D., Chancellor, Dr. S. Shasi Anand, Ph.D., Vice President, who

is the guiding light for all the activities in our University.

We thank our Vice chancellor Dr.R. Nagaraj, Ph.D., for guiding every

one of us and infusing us the strength and enthusiasm to work over successful.

We wish to express our sincere thanks to our respected Head of the

Department DR.A. FRANCIS SAVIOUR DEVARAJ, whose moral support
encouraged us to process through our project work successfully.

We offer our sincerest gratitude to our Supervisor, M.RAJA

for his patience, motivation, enthusiasm and immense knowledge.

We are extremely grateful to our Overall Project Coordinator, MR.K. VIGNESH

for constant encouragement in the completion of the Community Service Project.

Finally, we thank all, our Parents, Faculty, Non-Teaching Faculty and our

friends for their moral support.

CHAPTERNO. TITLE PAGE NO.

1 ABSTRACT
2 PROBLEM STATEMENT
3 INTRODUCTION
4 DIGITAL FORENSIC TOOLS
5 SPREAD SHEET
6 CONCLUSION
7 RESOURCES
 ABSTRACT

This study explores digital forensics (DF) reporting practices and

compares the results with other forensic science disciplines. Forty

reports were obtained from a quasi-experiment involving DF examiners,

and a quantitative content analysis was performed to determine which

conclusion types they applied and which content they included with
relevance to the credibility of the reported results. A qualitative analysis
was performed to examine the certainty expressions used in the
conclusions.
PROBLEM STATEMENT

Your supervisor has asked you to research current acquisition

tools. Using your preferred Internet
search engine and the vendors listed in this chapter, prepare a
report containing the following
information for each tool and stating which tool you would
prefer to use:
• Forensics vendor name
• Acquisition tool name and latest version number
• Features of the vendor’s product
With this data collected, prepare a spreadsheet listing vendors
in the rows. For the column headings,
list the following features:
• Raw format
• Proprietary format
• AFF format
• Other proprietary formats the tool can read
• Compression of image files
• Remote network acquisition capabilities
• Method used to validate (MD5, SHA-1, and so on)
INTRODUCTION

Computer Forensic Tools

Computer forensic tools are the tools which are used

during the investigation of evidences in the computer all
these tools are for different purposes. Some of them are
used for recovery, some for making images and some
are for the purpose of searching the files in the
computer.
The tools are used according to the need of the
investigation. It is not possible that the all tools are used
in the single case. Because there are thousands of tools
developed for the different purpose.
1. EnCase:-- is the forensic tool developed by the
Guidance Software and its latest version is 7.04. This
tool is used for various purposes such as acquisition,
analysis and reporting.

2. Forensic Toolkit:--is the tool developed by the

AccessData and its latest version is 4.2. This tool
performs various tasks as it is a Multi-purpose tool,
commonly used to index acquired media.

3. PTK Forensics:-- is the tool developed by the DF Labs

Inc. and its latest version is 7.04. This tools have work
as GUI for Sleuth Kit.

4. Pro Discover:-- is the tool developed by the

Technology Pathways and its latest version is 7.04.
This tool has the work to convert a raw image of a
disk into a bootable VMWare Machine.

5. X-Ways Forensics 16.4 X-Tensions API:--is the

software which is developed for the computer forensic.
It has the functionalities of cloning and imaging. It has
the property to read the raw format files. It supports
different types of file structures.
CONCLUSION

The tools are used according to the need of the

investigation. It is not possible that the all tools are used
in the single case. Because there are thousands of tools
developed for the different purpose.
References

1. Saleem S, Popov O. Formal Approach for the Selection of a Right Tool for Mobile Device
Forensics. 5th International Conference on Digital Forensics & Cyber Crime. Moscow; 2013.
2. Casey E. Digital evidence and computer crime: forensic science, computers, and the Internet.
3rd ed. 2011.
3. Saleem S, Popov O, Kubi A. Evaluating and Comparing Tools for Mobile Device Forensics
using Quantitative Analysis. Rogers M, Seigfried-Spellar KC, editors. Digit Forensics Cyber
Crime Lect Notes Inst Comput Sci Soc Informatics Telecommun Eng. Lafayette: Springer Berlin
Heidelberg; 2013;114:264–82.
4. International Telecommunication Union (ITU). ICT Facts and Figures [Internet]. 2013 [cited
2013 Sep 23]. Available from: http://www.itu.int/en/ITU-
D/Statistics/Documents/facts/ICTFactsFigures2013.pdf