What is digital forensics and what are the techniques of collecting digital forensics?
SHOWPIN 122 in 1 Precision Computer Screwdriver Kit, Laptop Screwdriver Sets with 101 Magnetic Drill Bits, Electronics Tool Kit Compatible for Tablet, PC, iPhone, PS4 Repair
30% OffPowerful Functions: 122 in 1 precision screwdriver set contains 98 screwdriver bits, 3 Torx TR screwdriver bits and 21 auxiliary tools, such as screwdriver handle, flexible shaft, extension rod, magnetizer, magnetic pad, cleaning brush etc. Own this ... read more
ASUS Vivobook 15.6” FHD Laptop, AMD Ryzen 3 3250U, 8GB RAM, 128GB SSD, Windows 11 Home in S Mode, Transparent Silver, M515DA-WS33
$319.33 (as of 28/06/2024 15:42 GMT -04:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)【Day-to-day Productivity】: This Windows laptop equipped with Windows 11 Home in S Mode, an AMD Ryzen 3 Processor, and AMD Radeon graphics, is designed to deliver a fast and smooth experience. 【Enhanced Protection】: Crafted with exceptional durability... read more
Compressed Air Duster, 3 Gear to 51000RPM Cordless Electric Air Duster, 6000mAh Rechargeable Air Blower with LED Light for Laptop Computer Keyboard Cleaning Pet Hair Crumb Replaces Compressed Air Can
$29.98 (as of 28/06/2024 15:43 GMT -04:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)TRUE 51000RPM: Our air duster adopters the most advanced motor, the maximum speed can reach TRUE 51000RPM, low energy consumption and longer lifespan. Great to help you deep cleaning, computers, Camera, electronic products, or for inflation. The cool... read more
Baseus USB C to HDMI Adapter, 4K@60Hz USB C Docking Station, 7 in 1 USB C Hub with 3 USB-A, PD 100W, TF/SD Card Reader, USB C Dock Compatible for iPhone 15/Mac/Dell/Acer/HP/ASUS/Steam Deck/Rog Ally
50% Off【7-in-1 Design】USB hub for laptop with 1 HDMI port, 3 USB3.0 ports, 1 SD/TF card slot, and 1 USB-C PD port, excellent connectivity to satisfy all your expansion needs at once, much higher efficiency at work. 【4K@60Hz Ultra Clarity】USB c to hdmi adapt... read more
the_cyberguy Answered question 17/08/2022
Digital forensics is defined as the process of collection, analysis, preservation, identification, extraction, investigation, documentation and reporting of computer or digital evidence so that it can be admissible in the court-of-law. Moreover, it is a formal process of finding out evidence from heap of digital or electronic media such as computer, server, network, databases, file systems, mobile devices, log management and so on media.
Digital evidence nowadays is part-and-parcel of almost all criminal and civil investigations or cases and digital forensics involvement is crucial for law enforcement investigations. Moreover, it focuses on the recovery and investigation of things found in electronic or digital devices and cybercrime scenes.
Phases of digital forensics processes and investigations involve the following major phases:
- First response: this is the action taken right after the occurrence of a security incident. The professionalism
- Search and seizure: The digital forensics professionals search for the devices involved in carrying out the cybercrime. The professionals will then carefully seize all devices to extract information out of each device.
- Collect the evidence: The digital forensics experts use the acquired devices to collect data through forensic methodologies for handling of the evidence
- Secure the evidence: The forensic professionals should have access to safe and secure environment where they can safeguard the evidence. It is in this phase that professionals determine whether the collected data is accurate, authentic and accessible or not.
- Data acquisition: This phase is where the process of retrieving Electronically Stored Information (ESI) from the suspected digital assets. This will help the professionals to gain some insight into the incident as whole and validity of the evidence.
- Data analysis: Digital forensics professionals scan the acquired data to find out admissible information that they can present to the court-of-law. Furthermore, the professionals examine, identify, separate, convert and model the data to transform it into useful information.
- Evidence assessment: In this phase, the professionals relate the evidential data to the security incident. In addition, they should conduct thorough evidence assessment as per the scope of the case under consideration.
- Evident preservation: The preservation phase ensures that potentially discoverable information and evidence is protected against alteration or deletion. Thus, digital forensics investigations should follow strict evidence preservation processes and should employ Electronic Discovery Reference Model (EDRM) of e-Discovery purposes.
- Chain of custody: An evidence must meet the relevancy, materiality, authenticity, and competency requirements before being admitted into the court-of-law. In order to maintain the integrity and uniqueness of evidence, a chain of custody must be established, without which evidence may be rendered inadmissible in court-of-law. Therefore, chain of custody is highly crucial component of digital forensics investigation. It documents everyone who handles evidence including the digital forensics professionals, the law enforcement officers and the lawyers who involved in the data collection, usage and investigation processes.
- Document and reporting: In this phase, the digital forensics professionals document and report all the findings as per the admissibility requirements of the court-of-law.
- Testify as an expert witness in court-of-law or administrative investigations: The digital forensics investigators should professionally present the expert witness to affirm the accuracy of the evidence.
Digital forensics can be broadly categorized into the following types:
- Computer forensics
- Network forensics
- Mobile devices forensics
- Database forensics
- Forensic data analysis
- IoT forensics
The most common digital forensics tools include the following;
- FTK imager
- The Sleuth Kit
- Xplico
- Bulk Extractor
- PALADIN
- Hex Editor Neo
- X-Ways Forensics
- OSForensics
- Wireshark
- Magnet RAM capture
- Registry Recon
- EnCase
- ProDiscover Forensic
- CAINE
- Volatility Framework
LLEVTIC Computer Speakers, Desktop Speakers with 6 Colorful RGB Lights, Volume Control PC Speakers, USB Powered Gaming Speakers with 3.5mm Aux Cable for PC Monitor Laptop Tablet Phone
44% Off【Full-Range Stereo Sound Quality】Equipped with advanced sound drivers and a full-range 2.0 channel reinforced stereo core, this computer speakers provides the perfect atmosphere for your entertainment activities such as watching movies, gaming, and l... read more
PC Gaming Headset Headphone Hook Holder Hanger Mount, Headphones Stand with Adjustable & Rotating Arm Clamp, Under Desk Design, Universal Fit, Built in Cable Clip Organizer EURPMASK
$12.99 (as of 28/06/2024 15:50 GMT -04:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)🎧【Clamp-on Headphone Stand】The E-Hold Series headphone holder fits desks from 0.31 inch to 1.57 inch thick, making it a versatile choice for most setups. The spring clamp is a breeze to remove and reattach. No glue, no mess. It blends seamlessly into... read more
Laptop Cleaning Kit Keyboard Cleaner, Keyboard Cleaning Kit Electronics Cleaning Tool for MacBook iPad Phone iPhone Pro, Brush Tool for Tablet, Computer, PC, TV Camera Lens Computer Vacuum Keyboard
$16.98 (as of 28/06/2024 15:43 GMT -04:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)DEEP CLEAN YOUR DEVICE The electronics cleaner kit can effectively deep clean all your electronic devices such as mobile phones, tablets, TVs, etc. It comes with retractable large keyboard brush, polishing cleaning cloth X 2, keycap puller, metal pen... read more
RIWUCT Foldable Laptop Stand, Height Adjustable Ergonomic Computer Stand for Desk, Aluminum Portable Laptop Riser Holder Mount Compatible with MacBook Pro Air, All Notebooks 10-16"
39% Off【Adjustable & Foldable】The laptop stand can raise your laptop up to 7.48 inches. You can incline at different angles and stand it up higher or lower depending on your needs, which will be extremely convenient if you use your laptop in a variety of po... read more
the_cyberguy Answered question 17/08/2022