Computer Hacking and Forensics Notes

Join Cybrary

Module 9 – Data Acquisition (Click to View Notes)

Acquiring Data from the hardrives like SD cards or some connecting deviceTypesSerial  RS232, R5485ToolsDrive spyForensic Tool Kit imagerDD Commander [view]


Module 11 – Access Data (Click to View Notes)

SetupInstallKnown File FilterLicense ManagerSingle/ Multiple MachinesNavigationWebFilterHexGrAPHICExplorerBookmarksIndexThumbnails TabUsing FTKCreate a CASeEvidence optionData CarvingBAckup the restoring  [view]


Module 12 – Image Files (Click to View Notes)

TerminologyVectorRastorMegafileTYpes of imagesGIFJPGTIFFBMPJP2PNGZiPRECOVERYDRIVE SPYIMAGE HEADERCARVINGCOMPRESSIONPLACE HOLDER FOR PATTERNSHUFFMAN CODINGLEMPEL- ZIVLOSSYVECTOR QUANTIZATION [view]


Module 13 – Steganography (Click to View Notes)

APPLIED TOTEXTAUDIOVIDEOFOLDEREMAILCODEApplicationMedical REcordDigital MusicTerrorismMoviesAttacksStego onlyKnown CoverKnown MessageKnown MessageKnown StegoChosen StegoChosen MessageTempest/ EMSECClassificationPhysical/ Chemical        (Micro [view]


Module 1 - Modern Forensics (Click to View Notes)

Evolution1822- 1911 Fingerprints (Galton)1887- 1954 Blood grouping (Lattes)1891- 1955 Firearms (GODDard)1858- 1946 Documentation (Osborn)1847- 1915 CriminAL iNVESTIGATION (Gross)1932   - FBI1984  -  COmputer Analysis/ Response TEam1993   -  fi [view]


Module 2 - Investigative Process (Click to View Notes)

MD5 CALCULATOR IS A PROGRAM THAT WILL ENABLE YOU TO RIGHT CLICK ANY FILE AND SELECT "MD5 CALCULATOR" FROM CONTEXT MENU . THIS WILL CALCULATE THE MD5 VALUE OF THE SELECTED FILE. YOU CAN COMPARE THE CALCULATED VALUE GIVEN TO YOU BY ANOTHER PERSON OR FR [view]


Module 3 - Searching and Seizing (Click to View Notes)

4th Amendment Patriot LawScopeImplied Extingent CircumstancesUrgent CircumstancesPlain ViewLawful Arrestinventory SearchesBorderWorkplace SearchesElectronic Surveillance Communication Network18 USC  2510 - 2522 Title III wiretap Statue2518 Intercept [view]


Module 4 – Digital Evidence (Click to View Notes)

 Types Of Digital DataAnti- Digital ForensicsTypesVolatileNon- VolatileTransient DataFragileTemporaryActive DataArchivedBackupFEDERAL RULES OF EVIDENCE104, 105, 106, 502, 604, 608, 609, 701, 705, 801, 803, 901, 1001, 1002, 1003, 1004INTERNATIONAL O [view]


Module 5 – First Responder (Click to View Notes)

WHO IS IT?INDIVIDUAL OR TEAM i.e.  POLICE DEPARTMENTROLE OF THAT PERSON IN THAT SITUATIONEPERTISE WITH EVIDENCETOOLKIT - COMMERCIAL/ OPEN SOURCEPROCEDURESECURING CRIME SCENECONDUCTING INTERVIEWSCHECKLISTSINTERVIEWSDOCUMENTATION OFCRIME SCENESCOLLECT [view]


Module 6 – Computer Forensics Labs (Click to View Notes)

PLANNING A LABBUDGET ITEMSPHYSICAL LOCATIONENVIRONMENT CONDITIONTEMPEST/ EMSECFIRE CODESRESTRICTING ACCESSLICENCINGELECTRICAL REQUIRESWORK AREA SEPARATIONHUMAN RESOURCEAUDITINGHARDWARE/ HARD DRIVE CONSIDERATIONMOBILE LAB CONSIDERATIONSOFTWARE CONSIDE [view]


Module 7 – Hard Disks and File Systems (Click to View Notes)

 TYPES OF  FILE SYSTEM AND HARD DRIVESDISKNETWORKDATABASEOTHERSDISK DRIVESINTERNALEXTERNALCOMPARABLE INFOSPEEDTRANSFER TIMECAPACITYPHYSICAL STRUCTURETRACK DENSITYARIAL DENSITYLOGICAL STRUCTUREFAT, FAT32NTFSEXT2, EXT3EFS, JFS, REISER ETCCD ROMRAID L [view]


Module 8 – Windows Forensics (Click to View Notes)

VOLATILE INFORMATIONDATE TIMELOGGED ON USERSOPEN FILESNETWORK INFORMATIONCONNECTIONSPROCESSESPROCESS TO PORTNETWORK STATUS CLIPBOARDDRIVER INFORMATIONMAPPED DRIVESSHARESNON- VOLATILEHIDDEN FILESA DATA STREETSSLACK SPACESSWAP FILESINDEX.DATSEARCH IND [view]


Join Cybrary

Our Revolution

We believe Cyber Security training should accessible for everyone, everywhere. Everyone deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is the world's largest community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel