CHFI

Data-Acquisition-Methods

Data Acquisition Methods

1 Comment / CHFI, Knowledge Base / By

Data Acquisition Methods in this article explain which of the method using on data acquition and also explain those method which is continuously using in forensic investigation. There are following four methods available for data acquisition: 1. Bit-stream disk-to-image file Forensic investigators commonly use this data acquisition method. It is a flexible method, which allows creation of one or more copies, or bit-for-bit repkations of the suspect drive. ProDiscover, EnCase, FTK, The Sleuth Kit, X-Ways …

Data Acquisition Methods Read More »

Review-Data-Acquisition-and-Duplication-Steps

Review Data Acquisition and Duplication Steps

Leave a Comment / CHFI / By

Review Data Acquisition and Duplication Steps in this Data acquisition is the first pro-active step in the forensic investigation process. The aim of forensic data acquisition is to make a forensic copy of data, which can act as evidence in the court. Forensic data duplication refers to the creation of a file that has every bit of information from the source in a raw bit-stream format. Steps to follow in the process of data acquisition …

Review Data Acquisition and Duplication Steps Read More »

Understand-Static-Data-Acquisition

Understand Static Data Acquisition

Leave a Comment / CHFI, Knowledge Base / By

Understand Static Data Acquisition in this refer to the non-volatile data, which does not change its state after the system shut down. Static data acquisition refers to the process of extracting and gathering the unaltered data from storage media. Sources of non-volatile data include hard drives, DVD-ROMs, USB drives, flash cards, smart-phones, external hard drives, etc. This type of data exists in the form of emails, word processing documents, web activity, spreadsheets, slack space, swap …

Understand Static Data Acquisition Read More »

Live-data-acquisition

Live Data Acquisition

Leave a Comment / CHFI / By

Live Data Acquisition is the process of extracting volatile information present in the registries, cache, and RAM of digital devices through its normal interface. The volatile information is dynamic in nature and changes with time, therefore, the investigators should collect the data in real time. Simple actions such as looking through the files on a running computer or booting up the computer have the potential to destroy or modify the available evidence data, as it …

Live Data Acquisition Read More »

Understanding-Data-Acquisition

Understanding Data Acquisition

Leave a Comment / CHFI, Knowledge Base / By

Understanding Data Acquisition in this the forensic data acquisition is a process of imaging or collecting information from various media in accordance with certain standards for analyzing its forensic value. With the progress of technology, the process of data acquisition has become more accurate, simple, and versatile. It uses many types of equipment , starting from small sensors to classy computers. Data acquisition is that the process of sampling signals that measure world physical conditions …

Understanding Data Acquisition Read More »

File-System-Analysis-Using-Autopsy

File System Analysis Using Autopsy

1 Comment / CHFI / By

File System Analysis Using Autopsy is a digital forensics platform and graphical interface to The Sleuth Kite and other digital forensics tools. Law enforcement, military, and corporate examiners use it to investigate what happened on a computer. You can even use it to recover photos from your camera’s memory card. Autopsy is an end-to-end platform with modules that come with it out of the box and others that are available from third-parties. Some of the …

File System Analysis Using Autopsy Read More »

Overview-of-File-System-Analysis

Overview of File System Analysis

Leave a Comment / CHFI / By

Overview of File System Analysis in this article explain American Standard Code for Information Interchange (ASCII) and unicode diffrent computer languages which can be used in file system and also explain which of file system cannot be analysis and Hex View of Popular Image File formats. Understanding ASCII, Unicode, and Offset 1. American Standard Code for Information Interchange (ASCII) Developed from telegraph codes, ASCII is a character encoding standard used in digital devices such as …

Overview of File System Analysis Read More »

RAID-Storage-System

What is RAID Storage System?

1 Comment / CHFI / By

Redundant Array of Independent Disks (RAID) may be a technology that uses multiple smaller disks simultaneously, which function as one large volume. It provides a specific method of accessing one or many separate hard disks, thereby decreasing the risk of losing all data if at all a hard disk fails or is susceptible to damages, and it also helps in improving access time. The RAID technology helps users to: Maintain a large amount of knowledge …

What is RAID Storage System? Read More »

Learn-about-CD-ROMDVD-File-System

Learn about CD-ROM/DVD File System

Leave a Comment / CHFI / By

Learn about CD-ROM/DVD File System in this article computer systems require file systems, such as NTFS or UNIX, to exchange and access the data contained in files easily and quickly. They divide data stored on CD-ROMs into sectors, containing both user data and error correction codes, Users need not worry about which data is stored in which sector, but should have an understanding of the CD-ROM fife structure. ISO 9660 ISO (International Organization for Standardization) …

Learn about CD-ROM/DVD File System Read More »

Overview-of-ZFS-file-system

Overview of ZFS file system

Leave a Comment / CHFI, Knowledge Base / By

Overview of ZFS file system as well as a logical volume manager developed by Sun Microsystems. The ZFS offers features like high storage capability, data protection, data compression, volume management, copy-on-write clones, data integrity checking, and automatic repair. Features US Pooled Storage Model This file system uses the storage pool model, which defines the storage characteristics and acts as a random data store from the point of creation of file systems. The storage allows the …

Overview of ZFS file system Read More »