Search engine for discovering works of Art, research articles, and books related to Art and Culture
Javascript must be enabled to continue!
Advanced Volatile Memory Forensics through Autopsy Integration
View through CrossRef
The main goal of this study is to design a novel plugin for the Autopsy forensic framework to enable forensic analysts to identify and extract volatile memory from small-scale digital devices. This includes network peripherals and Internet of Things devices, smartphones, and industrial-control systems. Given the importance of volatile memory to digital crime and cybersecurity investigations, an accurate and reliable tool is needed to non-destructively acquire forensic copies of the evidence. In the context of small-scale devices, this study is of acute importance to bridge the gap that exists in current forensic research and forensic practice, using separate tools can be challenging due to compatibility issues and the complexity of managing multiple system. In conclusion, the developed Autopsy plugin, which has been termed the MemoryIntegrator, seamlessly harmonizes with Autopsy forensic framework and is designed to work together with Volatility tool, specializing in detailed memory analysis. Consequently, the following main outcomes result from the experimentation and application of the plugin: Promotes the default forensic activity of Autopsy by providing the analysts with a way to swiftly and directly harvest and evaluate volatile data from diverse small scale digital devices. The implementation of the plugin ensures that the integrity of the memory data is maintained throughout the extraction and analysis process. This is facilitated by cryptographic hash validations that confirm that there are no changes in the data from the extraction to the point of analysis. The plugin maintains the integrity of the memory data from the time of extraction to the time of analysis using cryptographic hash validations which verifies that these data has not been manipulated at this point. Memory Integrator outmatched all the forensic tools herewith because conducting forensic test back at home verified its superiority in terms of the extraction of data from memory speed and the authenticity and formula which it uses in analysis. In the modern world, this is critical to investigate digital crimes and incidences that affect cybersecurity.
Lahore Garrison University
Title: Advanced Volatile Memory Forensics through Autopsy Integration
Description:
The main goal of this study is to design a novel plugin for the Autopsy forensic framework to enable forensic analysts to identify and extract volatile memory from small-scale digital devices.
This includes network peripherals and Internet of Things devices, smartphones, and industrial-control systems.
Given the importance of volatile memory to digital crime and cybersecurity investigations, an accurate and reliable tool is needed to non-destructively acquire forensic copies of the evidence.
In the context of small-scale devices, this study is of acute importance to bridge the gap that exists in current forensic research and forensic practice, using separate tools can be challenging due to compatibility issues and the complexity of managing multiple system.
In conclusion, the developed Autopsy plugin, which has been termed the MemoryIntegrator, seamlessly harmonizes with Autopsy forensic framework and is designed to work together with Volatility tool, specializing in detailed memory analysis.
Consequently, the following main outcomes result from the experimentation and application of the plugin: Promotes the default forensic activity of Autopsy by providing the analysts with a way to swiftly and directly harvest and evaluate volatile data from diverse small scale digital devices.
The implementation of the plugin ensures that the integrity of the memory data is maintained throughout the extraction and analysis process.
This is facilitated by cryptographic hash validations that confirm that there are no changes in the data from the extraction to the point of analysis.
The plugin maintains the integrity of the memory data from the time of extraction to the time of analysis using cryptographic hash validations which verifies that these data has not been manipulated at this point.
Memory Integrator outmatched all the forensic tools herewith because conducting forensic test back at home verified its superiority in terms of the extraction of data from memory speed and the authenticity and formula which it uses in analysis.
In the modern world, this is critical to investigate digital crimes and incidences that affect cybersecurity.
Related Results
A Novel Framework for Mobile Forensics Investigation Process
A Novel Framework for Mobile Forensics Investigation Process
Abstract
Investigating digital evidence by gathering, examining, and maintaining evidence that was stored in smartphones has attracted tremendous attention and become a key...
Virtopsy: Role of Radiology in Forensic Pathology in Unusual Cases
Virtopsy: Role of Radiology in Forensic Pathology in Unusual Cases
Background: An autopsy is the examination of the body of a dead person. The two types of autopsies that we studied are the conventional autopsy and virtual autopsy. Both play impor...
Utilization of Digital Forensics in Proving the Crime of Disseminating Indecent Videos Through Facebook Social Media in the Legal Area of West Kalimantan Police
Utilization of Digital Forensics in Proving the Crime of Disseminating Indecent Videos Through Facebook Social Media in the Legal Area of West Kalimantan Police
The research entitled: "Utilization of Digital Forensics in Proving the Crime of Disseminating Indecent Videos Through Facebook Social Media in the KALBAR Police Legal Area" aims t...
Qualitative Assessment of Digital Forensic Tools
Qualitative Assessment of Digital Forensic Tools
Forensic science is a study of science to criminals and civil laws. Digital forensics is the part of forensic science relating to proof found in computers and advanced storage medi...
AUTOPSY: Knowledge and Perception of undergraduate medical students in current teaching system
AUTOPSY: Knowledge and Perception of undergraduate medical students in current teaching system
Objective: To evaluate their acquaintance about autopsy, appropriate way of teaching and to appraise their views for the procedure of autopsy and recognition of Forensic as profess...
The Role of Digital Forensics in Cybercrime Investigations
The Role of Digital Forensics in Cybercrime Investigations
The explosion of technology in recent years has revolutionized the face of cybercrime and requires new and innovative approaches to investigating digital crimes. In this research, ...
MOLECULAR AUTOPSY: EVALUATION OF SUDDEN UNEXPECTED DEATH CASES IN TERMS OF “KCNQ1” GENETIC VARIATION
MOLECULAR AUTOPSY: EVALUATION OF SUDDEN UNEXPECTED DEATH CASES IN TERMS OF “KCNQ1” GENETIC VARIATION
Background: Deaths occuring without a known disease and/or a known cause, deaths with non-lethal diseases are interpretated as sudden-unexpected-suspected deaths. Autopsy should al...
Introduction to Digital Forensics
Introduction to Digital Forensics
Abstract: Crimes committed using computers are increasing rapidly, posing a challenge to law enforcement. Investigations including cybercrime, terrorism, and civil litigation all m...