As part of the Digital Forensics, each student is expected to carry out a study on a selected forensics tool. The study includes installing the tool, trying it with several use cases and then report the findings in a report and a presentation.
The study should cover the major features of the software tool by using it on benchmark forensics data such as Computer Forensic Reference Data Sets (CFReDS) http://www.cfreds.nist.gov/, etc.
The deliverables of the project should include:
Please submit the two files
- A report detailing the student’s work including all installation and application steps. These should be illustrated using text, diagrams, and snapshots.
- A presentation to be presented in the end of the semester
Each student should choose one of the following open source digital forensics tools:
(Note: all these tools are already installed on Kali Linux)
Please use the following
File Carving for the forensics topic
And the tool is
Foremost: Foremost is a console program to recover files based on their headers, footers, and internal data structures. This process is commonly referred to as data carving. Foremost can work on image files, such as those generated by dd, Safeback, Encase, etc, or directly on a drive.
0 comments