Computer Forensics

The document outlines learning outcomes and units for a course on digital forensics, covering topics such as Windows forensics, cryptography, memory forensics, virtual machine forensics, and cloud forensics. Each unit details specific areas of study, including data collection techniques, encryption methods, and forensic analysis of various systems. Additionally, it provides references for further reading on these subjects.

Uploaded by

Galety Mohammed

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

6 views2 pages

Computer Forensics

Uploaded by

Galety Mohammed

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 2

Learning Outcomes:

1. Overview of Windows Forensics

2. File System Analysis
3. Overview of Cryptography
4. Encryption and Decryption
5. Overview of Memory Forensics
6. Anti-forensic Techniques
7. Hypervisor Files and Formats
8. Forensic Analysis of a Virtual Machine
9. Overview of Cloud Forensics
10. Analysis of Cloud Applications
UNIT 1: Windows Forensics - Volatile data collection, Non-volatile data
collection, Registry Analysis, Browser Usage, Hibernate File Analysis, Crash
Dump Analysis, File System Analysis, File Metadata and Timestamp Analysis,
Event Viewer Log Analysis, MFT analysis, Timeline Creation, Evidence Collection
in Linux and Mac Operating system.

UNIT 2: Cryptography - Cryptographic System, Classification of

Cryptographic System, Secret Key, Cryptography, Cryptanalysis and Attacks,
Encryption and their types, Encryption algorithms, brute force attack, Decryption
and their types, HDD and Artifacts Encryption and Decryption Techniques.

UNIT 3: Memory Forensics - History of Memory Forensics, x86/x64

architecture, Data structures, Volatility Framework & plugins Memory acquisition,
File Formats – PE/ELF/Mach-O, Processes and process injection, Command
execution and User activity, Networking, sockets, DNS and Internet history,
shellbags, paged memory and advanced registry artifacts, Related tools – Bulk
Extractor and YARA, Timelining memory, Recovering and tracking user activity,
Recovering attacker activity from memory, Introduction to Anti-forensics, tools
and techniques.

UNIT 4: Virtual Machine Forensics - Types of Hypervisors, Hypervisor Files

and Formats, Use and Implementation of Virtual Machines in Forensic Analysis,
Use of VMware to establish working version of suspect’s machine, Networking
and virtual networks within Virtual Machine, Forensic Analysis of a Virtual
Machine (Imaging of a VM, Identification and Extraction of supporting VM files
in the host system, VM Snapshots, Mounting Image, Searching for evidence)

UNIT 5- Cloud Forensics - Introduction to Cloud Computing, Challenges

faced by Law enforcement and government agencies, Cloud Storage Forensic
Framework (Evidence Source Identification and preservation, Collection of
Evidence, Examination and analysis of collected data) Cloud Storage Forensic
Analysis. Dropbox analysis: Data remnants on user machines, Evidence source
identification and analysis, Collection of evidence from cloud storage services,
Examination and analysis of collected data.

Google Drive: Forensic analysis of Cloud storage and data remnants,

Evidence source identification and analysis - Collection of evidence from cloud
storage services, Examination and analysis of collected data, Issues in cloud
forensics. Case Studies.

Reference:
1. Window Forensic Analysis (DVD Toolkit) by Harlan Carver
2. File System Forensic Analysis by Brain Carrier
3. Windows Registry Forensics
4. Advanced Digital Forensic Analysis of the Windows Registry by Harlan Carvey
5. Cryptography and Network Security: United States Edition by William Stallings
6. Cryptography: An Introduction (3rd Edition) by Nigel Smart
7. An Introduction to Cryptography
8. Cryptography and Data Security by Dorothy Elizabeth Rob, ling Denning
9. The Art of Memory Forensics (Detecting Malware and Threats in Windows,
Linux, and
Mac Memory) Michael Hale Ligh, Andrew Case, Jamie Levy, AAron Walters
10. Advances in Memory Forensics by Fabio Pagani
11. Virtualization and Forensics A Digital Forensic Investigator’s Guide to Virtual
Environments by Diane Barrett
12. http://atkison.cs.ua.edu/papers/ACMSE11_JF.pdf
13.https://stars.library.ucf.edu/cgi/viewcontent.cgi?referer=https://
www.google.com/&httpsre dir=1&article=2790&context=etd
14. https://odr.chalmers.se/bitstream/20.500.12380/300023/1/CSE%2019-
10%20CPL%20Andersson.pdf
15. Cloud Forensics by Keyun Ruan, Joe Carthy, Tahar Kechadi, Mark Crosbie
16. Digital Forensics for Network, Internet, and Cloud Computing: A Forensic
Evidence Guide for Moving Targets and Data Paperback by Terrence V. Lillard
17. Data Collection Techniques for Forensic Investigation in Cloud by Thankaraja
Raja Sree and Somasundaram Mary Saira Bhanu
18.https://www.researchgate.net/publication/
235712413_Cloud_Forensics_A_MetaStudy_of_
Challenges_Approaches_and_OpenProblems
19. Cloud and Edge Computing-Based Computer Forensics: Challenges and Open
Problems by Vijay Prakash, Alex Williams, Lalit Garg, Claudio Savaglio and
Seema Bawa. (Research Paper)

Unit 4 (CF)
No ratings yet
Unit 4 (CF)
16 pages
Forensic Toolsfor Windows Forensic Analysis AComprehensive Review
No ratings yet
Forensic Toolsfor Windows Forensic Analysis AComprehensive Review
9 pages
Forensic Analysis of Virtual Hard Drives
No ratings yet
Forensic Analysis of Virtual Hard Drives
7 pages
Melese Abrham
No ratings yet
Melese Abrham
14 pages
Unit 2
No ratings yet
Unit 2
42 pages
CF Studies
No ratings yet
CF Studies
5 pages
FRM Course Syllabus IPDownload
No ratings yet
FRM Course Syllabus IPDownload
2 pages
FRM Course Syllabus IPDownload
No ratings yet
FRM Course Syllabus IPDownload
2 pages
INT250
No ratings yet
INT250
2 pages
INT250
No ratings yet
INT250
2 pages
FRM Course Syllabus IPDownload
No ratings yet
FRM Course Syllabus IPDownload
2 pages
CITS1003 9 Forensics
No ratings yet
CITS1003 9 Forensics
36 pages
Computer Forensics - 2
No ratings yet
Computer Forensics - 2
41 pages
Forensic Analysis1 - Students
No ratings yet
Forensic Analysis1 - Students
58 pages
Cyber Security
No ratings yet
Cyber Security
3 pages
Module 3 - Computer Forensics
No ratings yet
Module 3 - Computer Forensics
26 pages
Module 3-MF
No ratings yet
Module 3-MF
22 pages
Assignment 1 Priyanka Mam
No ratings yet
Assignment 1 Priyanka Mam
4 pages
Data Storage Forensics Paraphrased
No ratings yet
Data Storage Forensics Paraphrased
3 pages
Digital Forensics Overview
No ratings yet
Digital Forensics Overview
109 pages
Digital Forensics Overview
No ratings yet
Digital Forensics Overview
106 pages
Guide To Computer Forensics and Investigations 6th Edition Textbook
No ratings yet
Guide To Computer Forensics and Investigations 6th Edition Textbook
12 pages
Windows Forensics Fundamentals
No ratings yet
Windows Forensics Fundamentals
10 pages
Memory Forensics in Cybersecurity
No ratings yet
Memory Forensics in Cybersecurity
11 pages
Towards A Generic Approach For Memory Forensics
No ratings yet
Towards A Generic Approach For Memory Forensics
5 pages
Module 3.3
No ratings yet
Module 3.3
6 pages
Template 3
No ratings yet
Template 3
5 pages
CSDF Unit IV Part II
No ratings yet
CSDF Unit IV Part II
12 pages
3 - Forensic Acquisition and Analysis of VMware Virtual Machine Artifacts
No ratings yet
3 - Forensic Acquisition and Analysis of VMware Virtual Machine Artifacts
5 pages
5.cyber Forensics
No ratings yet
5.cyber Forensics
5 pages
Digital Forensics - Topic3 COMPUTER FORENSICS AND INVESTIGATION METHODOLOGY 2016-2017
No ratings yet
Digital Forensics - Topic3 COMPUTER FORENSICS AND INVESTIGATION METHODOLOGY 2016-2017
8 pages
Incibe Evidence Gathering in Windows
No ratings yet
Incibe Evidence Gathering in Windows
76 pages
FOCF
No ratings yet
FOCF
155 pages
Forensic Analysis: by Mrs. T. Hemalatha, Associate Professor Department of Computer Science & Engineering
No ratings yet
Forensic Analysis: by Mrs. T. Hemalatha, Associate Professor Department of Computer Science & Engineering
64 pages
Alamat Alamat Security Learning
No ratings yet
Alamat Alamat Security Learning
65 pages
Digital Forensics Research Paper Expanded
No ratings yet
Digital Forensics Research Paper Expanded
5 pages
Unit 1.3
No ratings yet
Unit 1.3
12 pages
Digital Forensics
No ratings yet
Digital Forensics
74 pages
Computer Forensics Based On What I Have Read: Definition of Computer Forensics
No ratings yet
Computer Forensics Based On What I Have Read: Definition of Computer Forensics
4 pages
CF - Notes Self (AutoRecovered)
No ratings yet
CF - Notes Self (AutoRecovered)
6 pages
Computer Forensics
No ratings yet
Computer Forensics
4 pages
Digital Forensic Investigation For Virtu
No ratings yet
Digital Forensic Investigation For Virtu
4 pages
CF Unit 2
No ratings yet
CF Unit 2
17 pages
Computer Forensics Literature Review
No ratings yet
Computer Forensics Literature Review
23 pages
DF Syllabus
No ratings yet
DF Syllabus
3 pages
Bilal Unit V Pe Csy R 21
No ratings yet
Bilal Unit V Pe Csy R 21
32 pages
Week 3 - Windows Forensic Analysis
No ratings yet
Week 3 - Windows Forensic Analysis
17 pages
Forensics Reconstruction of Executables From Windows 7 Physical Memory
No ratings yet
Forensics Reconstruction of Executables From Windows 7 Physical Memory
5 pages
Module 3.2
No ratings yet
Module 3.2
6 pages
CFA Unit 2 Notes
No ratings yet
CFA Unit 2 Notes
40 pages
Quiz Solutions - Introduction To Digital Forensics
No ratings yet
Quiz Solutions - Introduction To Digital Forensics
6 pages
Digital Forensics Basics A Practical Guide Using Windows OS 1st Edition Nihad A Hassan PDF Version
No ratings yet
Digital Forensics Basics A Practical Guide Using Windows OS 1st Edition Nihad A Hassan PDF Version
99 pages
Deep Dive Into Cloud Forensics
No ratings yet
Deep Dive Into Cloud Forensics
8 pages
Forensics
No ratings yet
Forensics
5 pages
Answer Key - CF
No ratings yet
Answer Key - CF
7 pages
Digital Forensics Syllabus
No ratings yet
Digital Forensics Syllabus
6 pages
U1 Section 1
No ratings yet
U1 Section 1
40 pages
Unit-1 D&C Forensics
No ratings yet
Unit-1 D&C Forensics
26 pages
Memory Forensics Overview
No ratings yet
Memory Forensics Overview
8 pages
Ex 1
No ratings yet
Ex 1
15 pages
Crowdsourcing Versus Mobile Network Testing - Ac - en - 5216 4204 92 - v0100
No ratings yet
Crowdsourcing Versus Mobile Network Testing - Ac - en - 5216 4204 92 - v0100
4 pages
Log 2
No ratings yet
Log 2
7 pages
Save Wizard Code Info
No ratings yet
Save Wizard Code Info
7 pages
Free Digital Planner 2024 Editado-Compactado 2
No ratings yet
Free Digital Planner 2024 Editado-Compactado 2
224 pages
EEG User Manual for Clinicians
No ratings yet
EEG User Manual for Clinicians
36 pages
BDT Developer's Manual Guide
No ratings yet
BDT Developer's Manual Guide
50 pages
MAPDL-Intro - 13.0 - WS06-geometry Import
No ratings yet
MAPDL-Intro - 13.0 - WS06-geometry Import
22 pages
Asianic Notebooks Pricelist
No ratings yet
Asianic Notebooks Pricelist
1 page
S7 Comunication Node-Red V1.0
100% (1)
S7 Comunication Node-Red V1.0
12 pages
HFSS Help PDF
No ratings yet
HFSS Help PDF
3,604 pages
MorhpoRDServiceUserManual Window
100% (1)
MorhpoRDServiceUserManual Window
10 pages
Victor v5 6 RN 8200 1965 05 B0 en
No ratings yet
Victor v5 6 RN 8200 1965 05 B0 en
46 pages
Creating A Standby Using RMAN Duplicate (RAC or Non RAC) (Doc ID 1617946.1)
No ratings yet
Creating A Standby Using RMAN Duplicate (RAC or Non RAC) (Doc ID 1617946.1)
11 pages
Nikhilbharani Resume
No ratings yet
Nikhilbharani Resume
2 pages
Carrier-Grade Switch Overview
No ratings yet
Carrier-Grade Switch Overview
15 pages
Computer Architecture Exam Guide
No ratings yet
Computer Architecture Exam Guide
3 pages
Transfer Money via SBI YONO App
No ratings yet
Transfer Money via SBI YONO App
1 page
Related Searches: Electrical-Interview-Questions-Answers PDF
No ratings yet
Related Searches: Electrical-Interview-Questions-Answers PDF
1 page
Training Manual For Dop Wan
No ratings yet
Training Manual For Dop Wan
20 pages
Rience 1-3
No ratings yet
Rience 1-3
22 pages
Creating A Vowel Chart in Excel
No ratings yet
Creating A Vowel Chart in Excel
3 pages
Exams 2024 Python For Beginners
No ratings yet
Exams 2024 Python For Beginners
22 pages
ENG6500 8 DL IntroductionToDeepLearning Part2
No ratings yet
ENG6500 8 DL IntroductionToDeepLearning Part2
65 pages
Computer Architecture - Memory System
100% (1)
Computer Architecture - Memory System
22 pages
EPA 2006 Architecture Standard and Guidance
No ratings yet
EPA 2006 Architecture Standard and Guidance
41 pages
Ict Action Plan 2023-2024
No ratings yet
Ict Action Plan 2023-2024
1 page
Radio Remote Control
No ratings yet
Radio Remote Control
4 pages
Excel Intro
No ratings yet
Excel Intro
15 pages
Application of ICT in Research
No ratings yet
Application of ICT in Research
10 pages

Computer Forensics

Uploaded by

Computer Forensics

Uploaded by

Learning Outcomes:

1. Overview of Windows Forensics

UNIT 2: Cryptography - Cryptographic System, Classification of

UNIT 3: Memory Forensics - History of Memory Forensics, x86/x64

UNIT 4: Virtual Machine Forensics - Types of Hypervisors, Hypervisor Files

UNIT 5- Cloud Forensics - Introduction to Cloud Computing, Challenges

Google Drive: Forensic analysis of Cloud storage and data remnants,

You might also like