Penetration Testing Tools, ML and Linux Tutorials

Week 21 Homework Digital Forensics

Stella Sebastian

In this week’s assignment, you will continue to work with your group to continue the final report you began in class. The instructions are included here again for reference. There is also a bonus activity aimed to sharpen your skills in locating and identifying data in a forensic image.

Just as in a real-world scenario, you will complete a final report to present your findings. You will work with your team to fill out the report.

  • The final report should be submitted as the homework deliverable for this week. Everything your group has completed in class should be included. What you do not finish today can be continued at home.
  • Use the  Final Case Report  Google Doc template to complete your report. Make a copy and be sure that each student has editing access. This will allow everyone in the group to access and work on the document at the same time.
  • Each group will turn in one completed report to be graded.
  • iPhone Forensics – Important Files and Databases

Lab Environnement

  • This homework will use the Digital Forensics – Autopsy lab in Kali Linux.
  • You will find the  tracy-phone-2012-07-15.final.E01  file located in the  /corpus  directory in Autopsy.

Instructions

You’ve examined and documented quite a bit of information from the iPhone image file. Now you will use that documentation to build a final report.

  • Location Information Worksheet Your group can look for WiFi and GPS info the following directories:
  • Note:  Input GPS coordinates into Google Maps to see the locations.
  • Refer to the image below as an example:

Google GPS

  • Find information related to WiFi and cell tower location information in  consolidated.db .

WiFi Cell

  • You will rely on the Locations Information and Correspondence Evidence Worksheets you’ve completed so far. Additionally, you can use the  iPhone Forensics – Important Files and Databases  resource to analyze and find more information to support your case, such as Voicemails and notes from the Notepad iPhone application.
  • For example, Autopsy, the operating system (Kali Linux), text editors (Nano), etc.
  • When including pictures from the iPhone, please use the time stamp of the  Created time  from autopsy.

Submission Guidelines

  • Each group should submit one version of the completed Final Case Report document.

Bonus Assignment: Russian Tea Room

The goal of this assignment is to sharpen your skills in locating and identifying data in a forensic image.

  • These skills are important for tasks related to locating and decoding data, such as executable code or malicious documents embedded in images or network logs.

Scenario: The Case of the Little Russian Tea Room

  • There was a fire at the Little Russian Tea Room restaurant last week, and the only thing recovered was a hard drive. To start rebuilding the business, the restaurant hired you as a forensics investigator to look at the disk image and reconstruct the menu.
  • You’ll be working with an EnCase image of the hard drive.
  • Luckily, the English and Russian menu are both in the hard drive image. However, only the English menu and two sections of the Russian menu are readable. Your must decode several sections of the Russian menu.

The strings in the EnCase image are hex and represent the UTF-16 format. You’ll need to be familiar with hex and UTF-16 encoding and decoding for this activity.

  • Review this  Unicode Tutorial  and the practice exercises. This review will help you locate the menus on the hard drive image.

Below are the files required to complete the assignment:

  • RussianTeaRoom.zip  (560 KB): The Autopsy case file and Encase image file.
  • menu.pdf  (56.0 KB): The Little Russian Tea Room menu.
  • Google Sheets: Russian Team Room
  • Unicode-Tutorial.md : Short Unicode tutorial.

The files can also be found in the  /root/autopsy-files/homework  directory in Autopsy.

Your task is to find, decode, and document six of the menus from the hard drive image using the Unicode Cyrillic and Latin character (cipher) set.

  • Open the  RussianTeaRoom  folder and select  RussianTeaRoom.aut .
  • Add the  Russian-TeamRoom.E01  EnCase image file to the case.
  • This is a sample of the hex data in the Autopsy  RussianTeaRoom  case file:

hex data

  • 2 Use  Google Sheets: Russian Team Room  to document the remaining information from the EnCase image for the investigation.
  • Hint:  There may be multiple locations for the same file.
  • Pancakes (Menu #3)
  • Hint:  Use the  Hex  and  String  tabs in  Data Content  window in Autopsy to view the data.

string dump

  • For example:  0x00000010
  • For example:  00 42 00 65 00 76 00 65 00 72 00 61 00 67 00 65 00 73
  • For example:  \u0042\u0065\u0076\u0065\u0072\u0061\u0067\u0065\u0073
  • Submit the completed  Google Sheets: Russian Team Room  file.

Important Note for Certification Prep Week

  • In Certification Prep Week, Day 1 you will be using CertMaster Practice in class.
  • Make sure you have access to the tool and should be ready to use it during this unit.

Important Note for Career Prep Week

  • After Certification Prep Week, we will move on to Career Prep. You will take a closer look at the cyber career landscape and will learn practical tips on how to prepare for the job hunt, hone their resume, craft their LinkedIn profile, and ace the behavioral and technical interviews.
  • Please come to class with a digital copy of your resume which you will be working on and sharing with your fellow peers.
  • You must also have a LinkedIn profile set up as well. If you did not set up a LinkedIn account during pre-work, please make sure you do so prior to Career Prep week.

© 2020 Trilogy Education Services, a 2U Inc Brand. All Rights Reserved.

Week 21 Homework Solution: Digital Forensics

Refer to the following solution files for the homework worksheets:

  • Week 21 Homework Solution: Digital Forensics – Final Report

© 2020 Trilogy Education Services, a 2U, Inc. brand. All Rights Reserved.

week 21 homework digital forensics

WordPress Social Login and Register Authentication Bypass

week 21 homework digital forensics

Wireless Pentesting Cheat Sheet

week 21 homework digital forensics

Kali Linux Cheat Sheet

HostnExtra Ads

Awesome Forensics

week 21 homework digital forensics

Awesome Event IDs

week 21 homework digital forensics

Agile Security Operations

Search code, repositories, users, issues, pull requests...

Provide feedback.

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly.

To see all available qualifiers, see our documentation .

  • Notifications

baberthal/CSBC-Homework

  • Shell 99.7%

IMAGES

  1. GitHub

    week 21 homework digital forensics

  2. Week 21 Homework Digital Forensics

    week 21 homework digital forensics

  3. Week 21 Homework Digital Forensics

    week 21 homework digital forensics

  4. Digital Forensics: Phases and Importance

    week 21 homework digital forensics

  5. Sample digital forensics report

    week 21 homework digital forensics

  6. What Is Digital Forensics?

    week 21 homework digital forensics

VIDEO

  1. Digital Forensics Now Podcast

  2. Forensics Catching The Killer S02E06 Murder In The Bus Station 02

  3. ACCT 417 (Spring 2024)

  4. Week 21 Homework Help

  5. CSIRT digital forensics

  6. The Digital Forensics Series

COMMENTS

  1. AdnanBuharalija/Week-21-Homework-Digital-Forensics: Ado

    Week 21 Homework: Digital Forensics. In this week's assignment, you will continue to work with your group to continue the final report you began in class. The instructions are included here again for reference. There is also a bonus activity aimed to sharpen your skills in locating and identifying data in a forensic image.

  2. GitHub

    Week 21 Homework: Digital Forensics. In this week's assignment, you will continue to work with your group to continue the final report you began in class. The instructions are included here again for reference. There is also a bonus activity aimed to sharpen your skills in locating and identifying data in a forensic image.

  3. GitHub

    This weeks homework we performed a digital forensic analysis of an Iphone's data. This homework was based on the National Gallery Exercise, however rather than looking at the overall scenario, we focused specifically on Tracy's IPhone, and how it related to the stamp theft. Week 21 Homework

  4. Week 21 Homework Digital Forensics

    Published Oct 29, 2021. + Follow. In this week's assignment, you will continue to work with your group to continue the final report you began in class. The instructions are included here again ...

  5. PDF CASE REPORT NATIONAL GALLERY DC

    Forensic images were collected by me from an image of the iPhone 3G on August 14, 2021, in Markham, Ontario. The forensic image files of the iPhone 3G, tracy-phone-2012-07-15- final.E01 can be viewed as an exact snapshot of the data present on the iPhone 3G during its acquisition. The tools used in our findings consisted of using the following:

  6. ITAS 2050

    21. Helpful Information from the textbook for D431 OA. Lecture notes 100% (1) 3. C840 Task 1 - Completed activities for task 1 passed. ... Digital Forensics in Cybersecurity C840 Task 1. Passed first attempt. 5 pages 2020/2021 92% (12) 2020/2021 92% (12) Save. C840 Task 2 v1 - Task 2. 20 pages 2020/2021 86% (7) 2020/2021 86% (7)

  7. Reconshell

    Week 21 Homework Digital Forensics In this week's assignment, you will continue to work with your group to continue the final report you began in class. The instructions are included here again

  8. Data Sets

    Below are links to the various sets of data needed to complete the hands-on activities described in the Digital Forensics Workbook. Chapter 4. Forensic Images.zip will contain the following files: (These files are separated on this website to make the large files easier to download.)

  9. unSafe.sh Bot on Twitter: "Week 21 Homework Digital Forensics https://t

    Week 21 Homework Digital Forensics - Penetration Testing Tools, ML and Linux Tutorials. In this week's assignment, you will continue to work with your group to continue the final report you began in class. The instructions are included here again. 1:08 PM · Oct 29, 2021

  10. Week 21 Homework: Digital Forensics

    Week 21 Homework: Digital Forensics \n. In this week's assignment, you will continue to work with your group to continue the final report you began in class. The instructions are included here again for reference. There is also a bonus activity aimed to sharpen your skills in locating and identifying data in a forensic image. \n Scenario \n

  11. Week 21 Homework Digital Forensics

    This homework will use the Digital Forensics - Autopsy lab in Kali Linux. You will find the tracy-phone-2012-07-15.final.E01 file located in the /corpus directory in Autopsy. Instructions. You've examined and documented quite a bit of information from the iPhone image file. Now you will use that documentation to build a final report.

  12. Alvin Li Forensic Investigation 2

    Alvin Li 001298498 Digital Forensics in Cybersecurity - C Task #2 - Performance Assessment A:PROCESS USED TO ISOLATE SUSPECTED EVIDENCE. On the bottom left of the screen double click the yellow folder to open windows file explorer.

  13. 032309

    Studying 032309 Digital Forensics at University of Technology Sydney? On Studocu you will find 40 tutorial work, lecture notes, assignments, practical, practice ... 21 pages 2019/2020 None. 2019/2020 None. Save. Disk Forensics method. 2 pages 2019/2020 None. 2019/2020 None. ... Week 02 Forensics Case Report Studoc. 7 pages 2022/2023 None. 2022/ ...

  14. Introduction to Digital Forensics Course

    Digital forensics, often referred to as computer forensics or cyber forensics, is a specialized branch of cybersecurity that involves the collection, preservation, analysis, and presentation of digital evidence to investigate cyber incidents, criminal activities, and security breaches.It applies forensic techniques to digital artifacts, including computers, servers, mobile devices, networks ...

  15. PDF COURSE OVERVIEW PREREQUISITES

    Topic Week Starting 1 Introduction to Digital Forensics 2/1/21 2 Acquiring Evidence 2/8/21 3 Filesystems 2/22/21 4 Open-Source Forensic Tools 3/1/21 ... 7 Programming for Digital Forensics 3/22/21 8 Application & Database Forensics 3/29/21 . IMPORTANT DATES January 28, 2021 - Spring 2021 semester begins February 2, 2021 - First class meeting

  16. Final Report week 21.docx

    View Final_Report_week_21.docx from FIT 2093 at Monash University. CASE REPORT NATIONAL GALLERY DC Tracy's iPhone [2012-07-15-National-Gallery] 2012-07-15-National-Gallery Digital Forensic AI Homework Help

  17. Module 21 Post-Test.pdf

    Forensics software is too advanced for younger staff, and so requires more training and validation of skills. AWR-139-W Digital Forensics Question 3 Correct 1.00 points out of 1.00 Question 4 Correct 1.00 points out of 1.00 Question 5 Correct 1.00 points out of 1.00 A _______ is the name for skilled staff qualified to accomplish a specific type ...

  18. Digital Forensics Reports

    Digital forensic reports are essential legal documents (Solomon et al., 2011). They also serve as technical and scientific documents outlining the process and findings after an investigator completes analyzing the digital evidence. When it comes to a digital forensic case before the Court, forensic reports are crucial elements.

  19. Lucasdomanski1984/Week-21-Homework-Digital-Forensics

    week 21 homework part 1 bonus.docx. week 21. Lucas-Domanski-Russian Tea Room-bonus part 2.xlsx. week 21. Lucas-Domanski-Russian Tea Room-bonus part 2.xlsx.

  20. Digital Forensics Round-Up, March 27 2024

    A round-up of this week's digital forensics news and views: FAIRness in digital forensics datasets' metadata - and how to improve it The availability of research data (datasets) and compliance with FAIR principles—Findability, Accessibility, Interoperability, and Reusability—is critical to progressing digital forensics…

  21. PDF Week-21-Homework-Digital-Forensics/Digital.Forensics.Final ...

    Contribute to Wba-01/Week-21-Homework-Digital-Forensics development by creating an account on GitHub.

  22. Digital Forensics and Investigations-Week1 Notes

    Digital Forensics and Investigations Week 1: Introduction to Cyber Crime and Computer Forensics. During this week, we had the opportunity to explore the background of computer forensics and cybercrime investigations. This week we also were introduces to basic principles of computer forensics as well as fundamental terminology.

  23. GitHub

    On January 21, 2016, Digitech Inc. was called in to assist the National Gallery, Washington D.C. (NGDC) case involving the conspiracy associated with the theft of valuable stamps and defacing of museums are at the NGDC. ... Digital forensics on a complete OS data-image captured from an Apple iPhone. The collected evidence showed criminal ...

  24. GitHub

    Cyber Security Bootcamp Homework. This is the repository for J. Morgan Lieberthal's Cyber Security Bootcamp Homework. Contribute to baberthal/CSBC-Homework development by creating an account on GitHub.