The IRMA Community
Newsletters
Research IRM
Click a keyword to search titles using our InfoSci-OnDemand powered search:
|
Evaluation of Autopsy and Volatility for Cybercrime Investigation: A Forensic Lucid Case Study
|
|
Author(s): Ahmed Almutairi (Concordia University, Quebec, Canada), Behzad Shoarian Satari (Concordia University, Quebec, Canada), Carlos Rivas (Concordia University, Quebec, Canada), Cristian Florin Stanciu (Concordia University, Quebec, Canada), Mozhdeh Yamani (Concordia University, Quebec, Canada), Zahra Zohoorsaadat (Concordia University, Quebec, Canada)and Serguei A. Mokhov (Concordia University, Quebec, Canada)
Copyright: 2020
Volume: 12
Issue: 1
Pages: 32
Source title:
International Journal of Digital Crime and Forensics (IJDCF)
Editor(s)-in-Chief: Feng Liu (Chinese Academy of Sciences, China)
DOI: 10.4018/IJDCF.2020010104
Purchase
|
Abstract
In this article, the authors successfully created two new plugins one for Autopsy Forensic Tool, and the other for Volatility Framework. Both plugins are useful for encoding digital evidences in Forensic Lucid which is the goal of this work. The first plugin was integrated in Autopsy to generate a report for the case of a Brute Force Authentication attack by looking for evidence in server logs based on a key search. On the other hand, the second plugin named ForensicLucidDeviceTree aims to find whether a device stack has been infected by a root-kit or not expression is implied by the previous statement. The results of both plugins are shown in Forensic Lucid Format and were successfully compiled using GIPC compiler.
Related Content
|
Shakir A. Mehdiyev, Tahmasib Kh. Fataliyev.
© 2024.
17 pages.
|
|
Fuhai Jia, Yanru Jia, Jing Li, Zhenghui Liu.
© 2024.
13 pages.
|
|
Dawei Zhang.
© 2024.
16 pages.
|
|
Yuwen Zhu, Lei Yu.
© 2023.
16 pages.
|
|
Vijay Kumar, Sahil Sharma, Chandan Kumar, Aditya Kumar Sahu.
© 2023.
14 pages.
|
|
Wenjun Yao, Ying Jiang, Yang Yang.
© 2023.
20 pages.
|
|
Dawei Zhang.
© 2023.
14 pages.
|
|
|