User Account

All Pages

Learning how to seize a digital evidence

Assignment Help Other Subject
Reference no: EM133118900

Assignment - Computer Forensics

In this assignment you will work on the first steps of seizing and imaging an evidence disk.And create a well-organized report that has documentation with Text and Pictures about your work.

Objectives:
- Learning how to seize a digital evidence found on the scene of the incident
- Being aware of the Dos and Don'ts when handling the evidence
- Filling the chain of custody and Learning its importance.
- Identifying the tools, both hardware and software, required for imaging the evidence data
- Preforming the imaging process which can be cloning or just imaging
- Validating the created image of evidence data

Context:[Fictional]

Scenario:The XYZ security team received a notification that suspicious cyber activity is taking place in Wilson Building. Surveillance cameras showed that a person, who could be the suspect, was seen in room Wilson 106 and then he left. When the team arrived at the scene, they only found a USB drive that could have been used in implementing the suspicious activity. They decided to seize it so they can perform the needed analysis to identify its content.
Scene Location: Wilson 106
• [For pictures, you can use your own place if you cannot access Wilson 106]
Evidence:A USB drive
• [a please have/use your own USB blankflash drive for this work. For faster performance you can use 8GB or less drives. Also, you can use SAU machines in case your machine is not powerful enough.]

• Will a warrant be needed in this case?Justify your answer and Add legal references[ 5 pts]
[Based on: Scientific Working Group on Digital Evidence.]
• General Instructions:[Seizing the Evidence]

1- Ensure the safety of all individuals at the scene. [X]

2- Protect the integrity of evidence. [X]

3- Evaluate the scene and formulate a search plan. [X]

4- Identify potential evidence. [The USB drive given to you]

5- All potential evidence should be secured, documented, and photographed. [5 pts ]
a. For this assignment No need to secure; just document and photograph.
i. In the report, the caption for photos/figures is required.

6- Conduct interviews. [X]

7- Any item to be removed from the scene should be properly packaged and secured. [X]

• For Removable Drives:

1- Document in writing the location and condition of all removable media[ 2pts]
a. For this assignment:The only the USB drive.

2- Remove any connected external media (e.g. external drives or thumb drives) after the computer has been powered down.[X]

• Creating the image:

1- Document the tools you plan to use.
a. For this assignment:
i. Hardware [X]

1. Tableau Forensic USB 3.0 Bridge
2. T8u:
a. Firmware:1.5.0.1, Date: 10/31/2016 , Time: 11:47:27
b. Serial: 000ecc13 0008415f

ii. Software.

2- List clearly the steps/work plan for creating the disk image.

3- Use snapshots for each step while creating the disk image using the Parrot Security Linux distribution.
a. Using hashing, Verifying the disk and the image are important

4- Use the Chain-Of-Custody (COC) document to describe the item and fill required information.
a. Assume that the evidence was released to another person on the team, and fill the necessary information.

Attachment:- Computer Forensics.rar

Reference no: EM133118900

Questions Cloud

Examine the ethical issues surrounding the development : Examine the ethical issues surrounding the development and use of medical technology and How can this be overcome? You may wish to respond in general terms
Explain the poster to the markers : Prepare a poster and deliver a short presentation to explain the poster to the markers - describe the principle and application of the techniques
Calculate the sales and COGS for each of the five products : Set a budget for the coming 12 months starting from 1/7/2015 ensuring that %'s are shown. Calculate the sales & COGS for each of the 5 products
Calculate the inventory turnover and days in inventory : Calculate the inventory turnover, days in inventory, and gross profit rate for Groneman Inc. for 2021 and 2022. Comment on any trends
Learning how to seize a digital evidence : Learning how to seize a digital evidence found on the scene of the incident - Identifying the tools, both hardware and software
What type of agency costs might occur : Suppose your company raises funds from outside lenders. What type of agency costs might occur? How might lenders mitigate the agency costs
CEM5EPM Construction And Engineering Project Management : CEM5EPM Construction And Engineering Project Management Assignment Help and Solution, La Trobe University - Assessment Writing Service
Prepare a lease payment schedule for Amaton Ltd : Prepare a lease payment schedule for Amaton Ltd, showing the division of the lease payment into interest and principal components for the life of the lease
Determine the amount of cash receipts stolen by the sales : Cash in bank according to the general ledger 9000 Cash according to the April 30, 2012, Determine the amount of cash receipts stolen by the sales

Reviews

Write a Review

Other Subject Questions & Answers

  Firm shut down production in the short run

Under what conditions should a firm shut down in the long run? Explain the difference between the short and long run conditions.

  Correct procedures in a negligence case

Why does the law consider the defendant%u2019s care correct procedures in a negligence case, but ignore them in a strict liability lawsuit? How is a strict liability lawsuit different from an intentional tort?

  Blocking competition and abusing their power

Antitrust laws were essentially created to stop businesses that got too large from blocking competition and abusing their power. Mergers and monopolies can limit the choices offered to consumers because smaller businesses are not usually able to c..

  Define culture and co-culture

Define culture and co-culture. How does belonging to your co-culture play a role in "Three Layers of Diversity" which influences your personality?

  Licensing of health care professionals

Physicians and nurses are required by states to meet specific licensing requirements before providing care to the public; however, other health care workers are required to be licensed.

  How does socrates conversation with meno

How does Socrates' conversation with Meno illustrate the definition, method, and value of philosophy? Does Chalmers' argument for the imaginability of brains

  Presentation - strategic plan for stevens district hospital

Review of the Strategic Plan for Stevens District Hospital, you have been asked to provide a presentation to the governing board of the hospital

  Differences between job order costing and process costing

Instead of writing a memo to Carol, is to research on the differences between job order costing and process costing and the effects on unit costs on them.

  Which agency has the best campaign

Which agency has the best campaign.Which campaign did a better job of addressing the client's interest?

  Define the types of prostitution

Reasons contributing to a person becoming a prostitute.

  What about the admission of drug running

State Trooper Jones follows Mike Smith, driving his car down the highway at normal speed. After three miles of being followed, Smith changes lanes without.

  International Drug Policies

Review the current national drug policies in Canada, England, and the Netherlands.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd