hi and welcome to everyday digit forensics. My name's just on his son,
and today I'll be taking you through the first episode of module to the file system.
In this video, we will go over basic definitions for Sparrow Systems. We're gonna define what a foul system is going to. Concepts like a file, a directory, a path
I wouldn't object it.
And with this just kind of review, the basic concepts of what a file system is before we jump into forensics. If you don't understand this,
this is good. Poor concepts.
If you're tired of hearing about objects, you go ahead and check on Episode two
Episode 2.2 years where we actually start reviewing file systems such as the fact file system and anti FS.
So what is the fastest?
I gave this photo as a little hints.
See if you can come up with what a file system.
So by definition of file system is a process that manages how and where data on a store device
typically your hard disk drive or in this day and age, a solid state drive is stored access and managed. It is a logical disc opponent that manages any dis internal operations as it relates to computer and is abstract to him. So a file system is a hiring. You have your top level folder, and from that folder you break down into
And then those other folders break down into more folders, documents, or they're just empty. As you see, the thesis folder under Tom is empty, however, the data directory breaks down into
into two objects
to text files.
So now for some file system concepts,
so file. If I was a container in a computer system for storing information,
you hear it interchangeably. Referred to as an object.
It's quite similar to paper documents used in an office
or at home
or even at the library. Those documents air the information you received when you buy a house to buy a car. Those are considered objects or files in a computer system.
Types of objects go from text files, data files, i n ery directories and graphics. The file types refers to the ability off the operating system to distinguish different different types of files, such as a text file, a source file and a binary file. These file types are like that. PDF
that MP four It tells the computer
how to run
this particular object. This file
many operatives isn't support many different types of fires,
so we have some special files, which are device files. They represent physical devices.
So these are files that hold Munna data for jester, temporary folders,
your terminal histories, your print queues, your network data
and so on. There's two types. Do you have the character special files and you have the block special files. Then there's also ordinary files. These contain user information. They could just be text documents, databases, executable files that similar to your bash files, Microsoft Office applications and so on.
There's different operations that could be applied to these types of files. So ordinary files you're allowed to add them,
modifying them, delete them and even just remove the
removing will be similar to moving a file from one directory to the next. So wasn't directory
the directories, a container that stores these files and other directories. As I showed in the higher key picture of Tom, Tom was a directory and Tom broke down into individual directories. And then we also had that one directory that just had nothing and that was the end of it. A directory is a file.
It's just the file that users permitted to use so to file for storage. In that sense,
ah, user cannot write toe directory. So you're not gonna be able to open up a directory into a word
into Microsoft Office and modified the data? No, it just opens up into a different storage area,
Theo asked. The operative system itself
holds the responsibility for brain directories. So the only way that you are actually able to write a directory is sort of the operative system. And this is when you right click and say on directory
directories or not file systems. A file system is a directory, but a directory is not a file system.
A file system is a combination of directories and files. You cannot say that
a combination of directories and files is a file system, so pass
you use pass every day as you use your computer. These are the paths of the euro string. Similarly, the route path of cyberia dot i t is https w w don't be cyber. He don t however, as you move forward, you're creating these absolute paps too
started areas of a file system.
So an absolute path
refers to the complete details needed to locate ah, file or folder. It starts at the root level, triangulate all the way to the ending subdirectory where your files located. Like I said, this is used in Web sites and operating systems for locating files.
Now the related paths is a way to specifically locate a directory from another directory.
this is saying that it within your current location,
what is the path you need to take to reach destination B?
So, for example, in your documents you have see sample documents and your index is see simple index.
The absolute path for documents is see sample dish
documents. However, your your relative path is dot dot directories because all you have to do is reach up to the parent level, and then this way you're able to actually locate the index directory.
So that made sense, right? Let's go back to our example, Tom
Exercise number one if a file called ANC thought text is located within the old directory.
down in this directory we have now a file called banking dot tex what would be the absolute path to this file,
then coming from to dock Tex What is the relative path to get to your stats directory?
So for the absolute path you're starting at Tom's,
you're scrolling down to tools.
You're heading down to old,
and you go into banking dot text file for question number two.
You started to
you do dot dot
the name of director dot dot to bring you up to the data directory, then your CD. Two tools. If you're using Mac or in a boon to flavor Lennox
and then city as well. Two stacks so you ready to path will be done. Got tools, sets
now file structure
a file structure. This is kind of just required format that the operating system can understand.
So file has a defined structured according to its type, So Pdf is a different structure than a word document.
The way textile works. If it's adopt text file, it's simple. It's just a sequence of characters organized into lines. If you break it down into the hex of that symbol, values as you're doing your analysis, you'll see that after the header, because each file have a header and a footer is just
pretty much a string of characters, and those strings of characters are the words that use them. Pipe
a source file. This is like your dot pie files for python or somewhere sourcing code that an object is a sequence of bites organized into blocks that understood Find the machine. This could be thought of as the binary files.
So in today's video wheat, we defined what a file system is. We discuss that it is hierarchy or folders. You start from a root level and you triangulate down.
We went over some of the common concepts, such as a file, a path, a directory and file structure.
We did some exercises to understand what an absolute path this
and what a relative path. This. And we also discussed that a directory does not mean that it's a file system. My file system
is a combination of directories and files, but a combination of directories and files is not a file system. So in the upcoming that use for this module will go over binary hexi decimal on decimals,
do some conversions. Just a touch upon that atomic level will do some logical expressions. Learn the logic tables and or and not talk about the paralysis of types and then dive into those different types. The types that will be focusing is a fat fast system NT fs
the exterior and the X three.
Alright, guys, I hope you enjoy this video
and I'll catch you on the next one.
Evidence Handling: Do it the Right Way
This course on evidence handling will walk you through the simple yet critical process of ...
1 CEU/CPE Hours Available
Certificate of Completion Offered
Kali Linux Fundamentals
In this Kali Linux course you will learn about the industry standard tool for penetration ...
1 CEU/CPE Hours Available
Certificate of Completion Offered