User Account

All Pages

ITC597 - Digital Forensics Assignment Problem

Assignment Help Other Subject
Reference no: EM132382954 , Length: word count:2000

ITC597 - Digital Forensics Assignment - Charles Sturt University, Australia

Abstract - This subject provides an in-depth study of the rapidly changing and fascinating field of computer forensics. It combines both the technical expertise and the knowledge required to investigate, detect and prevent digital crimes. The subject covers the knowledge on digital forensics legislations, digital crime, forensics processes and procedures, data acquisition and validation, e-discovery tools, e-evidence collection and preservation, investigating operating systems and file systems, network forensics, art of steganography and mobile device forensics, email and web forensics, presenting reports and testimony as an expert witness.

Learning outcomes - Upon successful completion of this subject, students should:

  • be able to determine and explain the legal and ethical considerations for investigating and prosecuting digital crimes;
  • be able to formulate a digital forensics process;
  • be able to evaluate the technology in digital forensics to detect, prevent and recover from digital crimes;
  • be able to analyse data on storage media and various file systems;
  • be able to collect electronic evidence without compromising the original data;
  • be able to evaluate the functions and features of digital forensics equipment, the environment and the tools for a digital forensics lab;
  • be able to critique and compose technical tactics in digital crimes and assess the steps involved in a digital forensics investigation;
  • be able to prepare and defend reports on the results of an investigation.

Assessment 1 - Tasks and Research Project

Task -

Task 1: Investigating Hashing software and the basic usage

In this task, you need to find three hashing identify software or utilities regardless MS Windows and/or Linux platforms these tools can run on and provide three quick samples or procedures or steps that to show how to use this three software or utilities to identify a hash string. Three (3) marks for each software or utility named and a sample of how to identify a hash string. You can use MD5, SHA varieties or a hash string at your choice.

Deliverable: Three software or utility named and provided details of how to identify a hash string from each of software or utilities. Provide figure number and a short description for each snapshot. All three software or utilities need at least a reliable reference for each.

Task 2: Case Project

Complete the Hands-on Project 9-4. (Nelson, Phillips, & Steuart, 6th edition, 2019, p. 411) Deliverable: Write a 300-500 words paper explaining the importance of hash values used in the files you examined. Provide screenshots of the steps completed in the project.

Task 3: Research Project

You're investigating a case involving a 2 GB drive that you need to copy at the scene. Describe the three types of acquisitions - physical, logical, and sparse that you can use to copy the drive accurately. Be sure to include your software and media choices.

Deliverable: Write a 300-500 word report that outlines standard investigation management and data validation methods.

Note: Combine deliverables of all three tasks mentioned above in a single document (only MS Word (preferable) or pdf, please note other formats e.g. *.zip, *.rar etc are NOT allowed).

Assessment 2 - Tasks and Forensics Report

Task -

Task 1: Recovering scrambled bits

For this task I will upload a text file with scrambled bits on the suject interact2 site closer to the assignment due date. You will be required to restore the scrambled bits to their original order and copy the plain text in your assignment.

Deliverable: Describe the process used in restoring the scrambled bits and insert plain text in the assignment.

Task 2: Digital Forensics Report

In this major task you are assumed a digital forensics investigator and asked to prepare a digital forensic report for the following scenario: You are investigating a real-world situation, an Enron scandal. Research Kenneth Lay's role in the Enron case and then examine his emails.

Student needs to obtain the archived file for this case around 18.0 GB and with a minimal registration or can make a copy from your lecturer. For further hints and the best software or utilities to accelerate the information searching should refer to Hands-on 11-1 and 11-2 on p.p 488-490, Nelson, Phillips, & Steuart, 6/e, 2019.

Your task is to search all possible data that might relate to Enron founder, Kenneth Lay, recover and present any digital evidence in the report.

Deliverable: For this forensic examination, you need to provide a report of 1800-2000 words in the format described in presentation section below.

Presentation - The following should be included as minimum requirements in the report structure:

Executive Summary or Abstract

This section provides a brief overview of the case, your involvement as an examiner, authorisation, major findings and conclusion

Table of Contents

Introduction

Background, scope of engagement, forensics tools used and summary of findings

Analysis Conducted

  • Description of relevant programs on the examined items
  • Techniques used to hide or mask data, such as encryption, steganography, hidden attributes, hidden partitions etc
  • Graphic image analysis

Findings

This section should describe in greater detail the results of the examinations and may include:

  • Specific files related to the request
  • Other files, including any deleted files that support the findings
  • String searches, keyword searches, and text string searches
  • Internet-related evidence, such as Web site traffic analysis, chat logs, cache files, e-mail, and news group activity
  • Indicators of ownership, which could include program registration data.

Conclusion

Summary of the report and results obtained

References

You must cite references to all material you have used as sources for the content of your work

Glossary

A glossary should assist the reader in understanding any technical terms used in the report.

Use a generally accepted source for the definition of the terms and include appropriate references.

Appendices

You can attach any supporting material such as printouts of particular items of evidence, digital copies of evidence, and chain of custody documentation.

Note - Need only 2000 words Assessment 2 - Task 2: Digital Forensics Report.

Attachment:- Digital Forensics Assignment File.rar

Reference no: EM132382954

Questions Cloud

What is the after-tax interest rate that david is paying : a. What is the before-tax interest rate (per year) on David's loan? b. What is the after-tax interest rate that David is paying?
How many shares of stock will be outstanding after the split : The firm just announced a 5-for-2 stock split. How many shares of stock will be outstanding after the split?
What will the stock price per share be after the stock : DE's is going to use all of its excess cash to repurchase shares of stock. What will the stock price per share be after the stock repurchase is completed?
Compare vertical and horizontal integration : Compare and contrast vertical and horizontal integration. What are some of the variables make each of these integrations valuable? Provide an example.
ITC597 - Digital Forensics Assignment Problem : ITC597 - Digital Forensics Assignment Help and Solution, Assessment Help - Charles Sturt University, Australia - Digital Forensics Report
Loan proceeds to repurchase shares : The tax rate is 30 percent. What will the value of BC Co. be if the firm borrows $20,000 and uses the loan proceeds to repurchase shares?
What are the core resources and capabilities of emerging : What are the core resources and capabilities of emerging multinationals from emerging economies? Some of the copycat strategies embraced by emerging multination
Firms unlevered cost of equity capital : Its WACC is 15 percent, and its cost of debt is 6 percent. The corporate tax rate is 30 percent. What is the firm's unlevered cost of equity capital?
How each method benefits multilayered access control : Identify what implementation method(s) can be used to incorporate multilayer access control. Describe and how each method benefits multilayered access control.

Reviews

Write a Review

Other Subject Questions & Answers

  Cross-cultural opportunities and conflicts in canada

Short Paper on Cross-cultural Opportunities and Conflicts in Canada.

  Sociology theory questions

Sociology are very fundamental in nature. Role strain and role constraint speak about the duties and responsibilities of the roles of people in society or in a group. A short theory about Darwin and Moths is also answered.

  A book review on unfaithful angels

This review will help the reader understand the social work profession through different concepts giving the glimpse of why the social work profession might have drifted away from its original purpose of serving the poor.

  Disorder paper: schizophrenia

Schizophrenia does not really have just one single cause. It is a possibility that this disorder could be inherited but not all doctors are sure.

  Individual assignment: two models handout and rubric

Individual Assignment : Two Models Handout and Rubric,    This paper will allow you to understand and evaluate two vastly different organizational models and to effectively communicate their differences.

  Developing strategic intent for toyota

The following report includes the description about the organization, its strategies, industry analysis in which it operates and its position in the industry.

  Gasoline powered passenger vehicles

In this study, we examine how gasoline price volatility and income of the consumers impacts consumer's demand for gasoline.

  An aspect of poverty in canada

Economics thesis undergrad 4th year paper to write. it should be about 22 pages in length, literature review, economic analysis and then data or cost benefit analysis.

  Ngn customer satisfaction qos indicator for 3g services

The paper aims to highlight the global trends in countries and regions where 3G has already been introduced and propose an implementation plan to the telecom operators of developing countries.

  Prepare a power point presentation

Prepare the power point presentation for the case: Santa Fe Independent School District

  Information literacy is important in this environment

Information literacy is critically important in this contemporary environment

  Associative property of multiplication

Write a definition for associative property of multiplication.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd