Scribd
Upload
219 views18 pages

Digital Forensics Lab: Autopsy Intro

ccc

Uploaded by

trinhse183413
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
219 views18 pages

Digital Forensics Lab: Autopsy Intro

ccc

Uploaded by

trinhse183413
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd

Lab 1: Introduction to Digital Forensics – Autopsy software

What You Need for this lab


 Windows 10
 Investigate a USB drive
o Owned by George Montgomery
 Assume we have the image file
o [Link]
o (from book Guide to Computer Forensics and Investigations. Sixth Edition)
 Software
o Autopsy : [Link]
 Tasks
o Recover Word files, images
o Search key words

Step 1.
Check hash code online : [Link]
Step 2.
Create a case with name
Details of the case
Choose Data Format
Click Disk Image or VM File
Choose the image file
Find deleted files :
Tag the file: right click and click New Tag
Step 3.
Create a tag for reporting
Tag both deleted files
Step 4.
Recover deleted file
Search keywords : “George”

Search results
Step 5.
Generate reports
Open or Save as file doc is recovered.
YOU MUST SUBMIT A FULL-SCREEN IMAGE FOR FULL CREDIT!
Save the document with the filename "YOUR NAME Lab [Link]", replacing "YOUR
NAME" with your real name.
Email the image to the instructor as an attachment to an e-mail message. Send it
to: xxx@[Link] with a subject line of "Lab 1 From YOUR NAME", replacing "YOUR
NAME" with your real name.

You might also like