Week 4 - Tools & Toolkits Flashcards
What are some broad categories that are the focus of some digital forensic tools?
Database forensics Email analysis Audio/video forensics Internet browsing forensics Network forensics Memory forensics File analysis Disk and data capture Computer forensics Digital image forensics
What is a digital forensics tool?
A tool that can be used investigate and examine a certain aspect of or type of data. It will most likely only be used for one type of category of analysis, like video/audio, file or network forensics.
What are digital forensics toolkits?
An instrument that can analyse and investigate multiple different types of digital forensic evidence categories and data types. It is like having multiple tools in one.
What are some examples of digital forensic tools?
Hash comparators - compare hash files of different files/images
Hex editors - view or search for data within non-text files
Disk imagers - create images of disks or partitions
Web cache viewers - extract and view web history
EXIF metadata extractors - extract and view EXIF data from images
What are some examples of digital forensics toolkits?
The SANDS Investigated Forensic Toolkit (SIFT) CrowdResponse Volatility The Sleuth Kit (And Autopsy) FTK Imager CAINE DEFT PlainSight HELIX3
