Posted in Uncategorized

Alat Bantu Forensika Komputer

digital forensic

Defenisi :

Forensics is the process of using scientific knowledge for collecting, analyzing, and presenting evidence to the courts.

Computer Forensics as the discipline that combines elements of law and computer science to collect and analyze data from computer systems, networks, wireless communications, and storage devices in a way that is admissible as evidence in a court of law.

The main GOAL of computer forensics is to identify, collect, preserve, and analyze data in a way that preserves the integrity of the evidence collected so it can be used effectively in a legal case.

Two basic types of data are collected in computer forensics. Persistent data is the data that is stored on a local hard drive (or another medium) and is preserved when the computer is turned off. Volatile data is any data that is stored in memory, or exists in transit, that will be lost when the computer loses power or is turned off. Volatile data resides in registries, cache, and random access memory (RAM). Since volatile data is ephemeral, it is essential an investigator knows reliable ways to capture it

 

Beberapa tool populer sebagai alat bantu Forensika Komputer, diklasifikasi  berdasarkan fitur-fitur yang dimiliki seperti berikut :

  • Disk and data capture tools
  • File Viewer
  • File Analysis Tools
  • Registry Analysis Tools
  • Internet Analysis Tools
  • Email Analysis Tools
  • Mobile Device Analysis Tools
  • MacOS Analysis Tools
  • Network Forensics Tools
  • Database Forensics Tools

 

 

Digital Forensics Framework   |    http://www.digital-forensic.org/

Open Computer Forensics Architecture     |   http://sourceforge.net/projects/ocfa/

Computer Aided Investigative Environment  |  http://www.caine-live.net/

X-Way Forensics    |  http://www.x-ways.net/forensics/

SANS Investigative Forensics Toolkit      |     http://digital-forensics.sans.org/community/downloads

EnCase    |    https://www.guidancesoftware.com/products/Pages/encase-forensic/overview.aspx

Registry Recon    |    http://arsenalrecon.com/apps/recon/

The Sleuth Kit      |    http://www.sleuthkit.org/

Libforensics          |    http://code.google.com/p/libforensics/

Volatility                |    http://code.google.com/p/volatility/

WindowsSCOPE   |   http://www.windowsscope.com/index.php?page=shop.product_details&flypage=flypage.tpl&product_id=35&category_id=3&option=com_virtuemart

The Coroner’s Toolkit    |      http://www.porcupine.org/forensics/tct.html

Oxygen Forensics Suite    |   http://www.oxygen-forensic.com/en/features

Bulk Extractor      |    http://digitalcorpora.org/downloads/bulk_extractor/

Xplico    |    http://www.xplico.org/about

sumber :

http://resources.infosecinstitute.com/computer-forensics-tools/#gref

Computer Forensics CheatSheet

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s