Hands On Project 3-1

ASSIGNMENT-1

Submitted by:
ALISHETTY RAHUL KUMAR
11566867

Task 1:

Hands on Project 1-3:

In this Project 1-3, Where the project is taken from chapter-3 and it is allocated as project “C1Prj03.dd”. Now the following below diagrams shows the Project.

Hands on Project 1-5:

The Hands on Project 1-5, It is the continuous from the previous project and should allocate the project of “C1Prjo4.dft” file in software. Then the following diagram shows the project.

The “.jpeg or .gif” then the below diagrams explains us.

Hands On Project 3-1:

In this project, Firstly we have to keep empty the pen drive to perform the process otherwise we might collapse

the total data in pen drives or external hard disks. Now, click tools and make selection of diagram, then it appears.

“Write all 0’s”

After that, click select “Write all 0’s” then the following image shows below.

So, finally the project is transferred to particular pen drive or hard disks.

Task 2:

INTRODUCTION:

The digital forensic is used to analyse the digital information, which is used in civil criminal cases.

Now-a-days the technology advancements is are now mainly used for crimes. To investigate this occurring crimes digital forensic investigator is required.

Acquisition Methods:

There are two types of acquisition, they are: Live and Static. The live acquisition is done when password is involved, where the static acquisition is involved when the evidence is seized. Acquisition methods are of four types: they are bit stream disk-image, bit stream disk-disk, logical disk -disk method.

Disadvantages:

1. It is time consuming, when the larger image file arise.
2. The difference between the original and duplicate image finding is very tough.
3. Modification of evidence has a chance

Investigation with Network Administrator:

Diplomatic approach is obliged while conversing with network administrator. They knews the most about the system and computer and I can get the critical data about confirmation and suspect from him. Certain inquiries which I can ask are; investigation has happened some time recently, did he think anybody that any extra representative as of late, the amount of access is given to workers of investigation office and any progressions made in client comes and drive after the occurrence. These inquiries can help in discovering the

suspect.
It is very important to maintain the data integrity in digital evidence as they can be altered. For the validation of data, it will use tools like X-Ways Forensic, IDM computing solution Ultra compare.

Task-3:
Introduction:
The basic Pro Discover is a forensics tool that is used for converting raw image into routing VM ware Machine. This tool uses predefined basic Pro Discover image format
Steps should be followed:

1. The main thing required for this project is to install the software requirement. They are :
a. Pro discover Basic 64
b. Oracle VM virtual Box
2. The user must be install both the software on their using own system.
3. After installation, proceed with Pro Discover, after that open the tool by double clicking.
4. When you open the tool, it will give a dialog box asking for project name, file name and other details. Enter a suitable Project name and Project file name and then click Open.
5. We are now done with the task.

Conclusion:
It is an easy guide to follow and convert the .eve file to .vhd file using the Basic Pro discover software and then load the file to Oracle Virtual Box.

References:
lawrence, (1987). fundamentals of digital forensics. 2nd ed. united kingdom: kennedy. srathmore, (2001). basics of forensics. 9th ed. canada: miltonhugh.