|
|
Forensic Analysis of Discs and Metadata under OS Linux
Kocnová, Jitka ; Rychlý, Marek (referee) ; Očenášek, Pavel (advisor)
This bachelor's thesis is about forensic analysis of memory devices and their metadata. It's part is also an application for Linux system which focuses on restoring data from memory devices using EXT, UDF and ISO 9660 file systems; and also some examples for educational use. The application was written in the C++ language and restores files by searching for their start and end tags. The application was tested on real data and it was also compared with already existing similar applications. As a result, it was found out that the application is successful even if there is no chance to work with informations stored in journal file of EXT file system, that is used by some of the other programs the application was compared with.
|
|
|
Forensic Analysis in Linux OS
Beneš, Martin ; Rychlý, Marek (referee) ; Očenášek, Pavel (advisor)
This thesis deals with possibilities of forensic analysis on Linux operating system investigation. Forensic investigation is performed on test installation of Xubuntu using BackTrack distribution and tools included on it. The thesis is divided into chapters, starting with operating system Linux basics, continuing with requirements for investigator and his equipment to tools used for analysis. All discussed tools are available for free, their size vary from simple and small tools to complex frameworks. Theoretical knowledge is applied to real system and usage of tools is shown. This thesis ends with forensic report, which summarizes all findings gathered during investigation.
|
|
|
Forensic Analysis of Discs and Metadata under OS Linux
Kocnová, Jitka ; Rychlý, Marek (referee) ; Očenášek, Pavel (advisor)
This bachelor's thesis is about forensic analysis of memory devices and their metadata. It's part is also an application for Linux system which focuses on restoring data from memory devices using EXT, UDF and ISO 9660 file systems; and also some examples for educational use. The application was written in the C++ language and restores files by searching for their start and end tags. The application was tested on real data and it was also compared with already existing similar applications. As a result, it was found out that the application is successful even if there is no chance to work with informations stored in journal file of EXT file system, that is used by some of the other programs the application was compared with.
|
|
|
Forensic Analysis in Linux OS
Beneš, Martin ; Rychlý, Marek (referee) ; Očenášek, Pavel (advisor)
This thesis deals with possibilities of forensic analysis on Linux operating system investigation. Forensic investigation is performed on test installation of Xubuntu using BackTrack distribution and tools included on it. The thesis is divided into chapters, starting with operating system Linux basics, continuing with requirements for investigator and his equipment to tools used for analysis. All discussed tools are available for free, their size vary from simple and small tools to complex frameworks. Theoretical knowledge is applied to real system and usage of tools is shown. This thesis ends with forensic report, which summarizes all findings gathered during investigation.
|
guest ::
