Lab 4 Cyber Forensics

Uploaded by

This document discusses using the DC3DD tool and Guymager to acquire disk images in a forensically-sound manner. It explains running DC3DD with options like "if" to specify the input device, "hash" for hashing algorithms, and "of" for the output file. It also shows verifying hashes of the original device with tools like md5sum and using Guymager to view acquired disk images.

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Lab 4 Cyber Forensics

Uploaded by

Dhananjay Chhabra

0% found this document useful (0 votes)

54 views2 pages

Copyright

Available Formats

TXT, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Download as txt, pdf, or txt

0% found this document useful (0 votes)

54 views2 pages

Lab 4 Cyber Forensics

Uploaded by

Dhananjay Chhabra

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Download as txt, pdf, or txt

Jump to Page

You are on page 1of 2

Search inside document

Lab 4 : Acquisition of the Evidences with the use of DC3DD package and Guymager

fdisk -l

/dev/sda1(Partition No.)

S(SCSI - Small Computer System Interface)

D(Sriver)
A(DiskName)

/dev/sdb1

DC3DD (Department of Defence Cyber Crime Center Data Dump)

dc3dd [option 1] [option 2] . . . . . . . . [option n]

dc3dd if=/dev/sdb hash=md5 log=dc3dd_SSS of=test1.dd

dc3dd started at date and time

device size : blocks / Sector Size
bytes for Imaging Available
Bytes of Image that has been Made.

dc3dd COmpletion Time

ofsz - size of output file

ofs- outputfile with extension..

dc3dd if=/dev/sdb hash=md5 log=test1_fragment ofsz=1500M ofs=Test1.img.000

Test1.img.001
Test1.img.002
Test1.img.003
.
.
.
.
.
.
Test1.img.0010

if - Input File (Device of which we have to make the image/Acquisition)

Hash - Specify the Type of Hashing You want (md5)
log - contains the details of the imaging
of - is the output file (created by the DC3DD)

md5sum /dev/sdb
sha1sum /dev/sdb
sha256sum /dev/sdb
sudo guymager
password

RK For Some
Document3 pages
RK For Some
Šarah Jáponïa
No ratings yet
Aaaaark For Some
Document3 pages
Aaaaark For Some
Šarah Jáponïa
No ratings yet
Medianet Manual
Document10 pages
Medianet Manual
Jorge Ivan Guillen Amado
No ratings yet
Digital Forensics and Acquiring Forensic Image
Document1 page
Digital Forensics and Acquiring Forensic Image
Siddhesh Karekar
No ratings yet
Command List Irth
Document2 pages
Command List Irth
Soham Mukherjee
No ratings yet
Africa Creates
Document6 pages
Africa Creates
Šarah Jáponïa
No ratings yet
Public Car Seismic Manual
Document27 pages
Public Car Seismic Manual
kjshalek
No ratings yet
Digital Forensic Kali
Document3 pages
Digital Forensic Kali
pavanhugar
No ratings yet
Clonar Linux DD Command
Document3 pages
Clonar Linux DD Command
pepet1000
No ratings yet
Solaris Cluster How to Verify and Troubleshoot Physical Device Paths, When _DID_ Device Path is in Status _Fail
Document8 pages
Solaris Cluster How to Verify and Troubleshoot Physical Device Paths, When _DID_ Device Path is in Status _Fail
cresmak
No ratings yet
Forensic Disk Imaging Step-By-Step
Document4 pages
Forensic Disk Imaging Step-By-Step
pop ion
100% (2)
Lab-7_dd command for Dead and Live acquisition
Document2 pages
Lab-7_dd command for Dead and Live acquisition
dipankarcalcutta
No ratings yet
Linux DD Command
Document11 pages
Linux DD Command
toto7755
No ratings yet
8.20240801 0700 ClassNotes
Document4 pages
8.20240801 0700 ClassNotes
laxmishanthib
No ratings yet
Week 8 - Graded + Practice Assignment
Document12 pages
Week 8 - Graded + Practice Assignment
industryinteractionpod7
No ratings yet
Darc
Document9 pages
Darc
Junior Bermudez
No ratings yet
Disk Cloning - ArchWiki
Document10 pages
Disk Cloning - ArchWiki
Fernando Siqueira
No ratings yet
Session 10 - Dirvish Backup in Ubuntu
Document11 pages
Session 10 - Dirvish Backup in Ubuntu
Pheakdey Chin
No ratings yet
Replacing A Failed or Removed Disk Via Vxdiskadm (Option 5) May Fail With "Test: Argument Expected".
Document3 pages
Replacing A Failed or Removed Disk Via Vxdiskadm (Option 5) May Fail With "Test: Argument Expected".
res0nat0r
No ratings yet
Report
Document5 pages
Report
Raghul Krishna
No ratings yet
FTK dc3dd
Document25 pages
FTK dc3dd
ramdev
No ratings yet
Installing The OCFS File System
Document5 pages
Installing The OCFS File System
Ajay Kumar
No ratings yet
Read Me How To Play PC Games With DosBox Turbo
Document16 pages
Read Me How To Play PC Games With DosBox Turbo
l_a_l_a
100% (1)
Configure LUNs For ASM Disks Using WWID ASMLIB Linux5
Document17 pages
Configure LUNs For ASM Disks Using WWID ASMLIB Linux5
Sujeewa Chathurani Dias
No ratings yet
SUSE Drive Replacment Procedure
Document9 pages
SUSE Drive Replacment Procedure
darksoulg7
No ratings yet
10 Red Hat® Linux™ Tips and Tricks
Document9 pages
10 Red Hat® Linux™ Tips and Tricks
m.tousif.n.k
No ratings yet
Laboratory Manual: Applied Operating System (IT 607)
Document21 pages
Laboratory Manual: Applied Operating System (IT 607)
naidujhsn
No ratings yet
The Forensic-Cheat-Sheet For Linux and TSK: References
Document2 pages
The Forensic-Cheat-Sheet For Linux and TSK: References
Research Guy
100% (1)
6 Examples To Backup Linux Using DD Command
Document3 pages
6 Examples To Backup Linux Using DD Command
Hugo Medina Sosa
No ratings yet
DISM - Injecting Drivers
Document12 pages
DISM - Injecting Drivers
sute007
No ratings yet
Disk Managment
Document12 pages
Disk Managment
VivekGupta
No ratings yet
Dsfo Readme
Document5 pages
Dsfo Readme
Misa Misa
No ratings yet
Disk Management
Document124 pages
Disk Management
newaplok
No ratings yet
Operating System Assignment 4-Dos Commands
Document7 pages
Operating System Assignment 4-Dos Commands
Jayashree Wawhal
No ratings yet
CPE 407 Lab Activity 3
Document23 pages
CPE 407 Lab Activity 3
Ishmael Batumbakal
No ratings yet
Output Log 2022-04-23 23-38-53
Document14 pages
Output Log 2022-04-23 23-38-53
Yuri Nicolau
No ratings yet
Output Log
Document12 pages
Output Log
filan taula02
No ratings yet
ModKit QuickGuide
Document5 pages
ModKit QuickGuide
Eduardo Marques
No ratings yet
DirectX 11 Technology Update US
Document54 pages
DirectX 11 Technology Update US
Tanishq Kapoor
No ratings yet
Neural Network With Numpy
Document5 pages
Neural Network With Numpy
eduardo
No ratings yet
3.2.2.4 Lab Navigating The Linux Filesystem and Permission Settings
Document9 pages
3.2.2.4 Lab Navigating The Linux Filesystem and Permission Settings
MICAH WALDRON
No ratings yet
DD (Unix) : DD Is A Common Unix Program Whose Primary Purpose Is The Low-Level Copying and
Document7 pages
DD (Unix) : DD Is A Common Unix Program Whose Primary Purpose Is The Low-Level Copying and
Emile Anatoh
No ratings yet
DMDE Manual
Document59 pages
DMDE Manual
vasyl.andriuk
No ratings yet
Mounting Cheat Sheet: Cert Prep: Comptia Linux+ (Xko-004)
Document2 pages
Mounting Cheat Sheet: Cert Prep: Comptia Linux+ (Xko-004)
bob
No ratings yet
SVM
Document2 pages
SVM
vishavanath vk
No ratings yet
Citra Log - Txt.old
Document16 pages
Citra Log - Txt.old
alteajimenez391
No ratings yet
Vehicle Seat Vacancy Identification
Document4 pages
Vehicle Seat Vacancy Identification
Pramila Gupta
No ratings yet
3 Some Commonly Used CUDA API: 3.1 Function Type Qualifiers
Document7 pages
3 Some Commonly Used CUDA API: 3.1 Function Type Qualifiers
Muhammad Azmat
No ratings yet
DB2 Redirect Restore Using TSM
Document8 pages
DB2 Redirect Restore Using TSM
Jaya Chandra
No ratings yet
Lab 4 Navigating - The - Linux - Filesystem - and - Permission - Settings
Document9 pages
Lab 4 Navigating - The - Linux - Filesystem - and - Permission - Settings
uzair
No ratings yet
Git Gambit User Report 1
Document11 pages
Git Gambit User Report 1
mrgods.home
No ratings yet
FSCK Ufs Example
Document3 pages
FSCK Ufs Example
Titus Kernel Maestria
No ratings yet
Converting ZeroShell 2GB Disk Image To A 1GB Disk Image With Installation
Document4 pages
Converting ZeroShell 2GB Disk Image To A 1GB Disk Image With Installation
Agus Kresna Ardiyana
No ratings yet
Citra Log
Document10 pages
Citra Log
aoifan899
No ratings yet
HW - Odm: Odm (Object Data Manager)
Document9 pages
HW - Odm: Odm (Object Data Manager)
grcc2022
No ratings yet
Computer Notes 1
Document40 pages
Computer Notes 1
Sk Singh
No ratings yet
Fpse 64
Document6 pages
Fpse 64
vejaina21
No ratings yet
Reading Raster Data With Gdal Gdal: Open Source RS/GIS Python Week 4
Document53 pages
Reading Raster Data With Gdal Gdal: Open Source RS/GIS Python Week 4
Ramy Kanaan
No ratings yet
LPIC-1 Primer
From Everand
LPIC-1 Primer
John Greene
Rating: 4.5 out of 5 stars
4.5/5 (3)
Dreamcast Architecture: Architecture of Consoles: A Practical Analysis, #9
From Everand
Dreamcast Architecture: Architecture of Consoles: A Practical Analysis, #9
Rodrigo Copetti
No ratings yet
Genetic Algorithm
Document47 pages
Genetic Algorithm
Dhananjay Chhabra
No ratings yet
Association Rule Mining - Apriori Algorithm
Document22 pages
Association Rule Mining - Apriori Algorithm
Dhananjay Chhabra
No ratings yet
Evaluation Metrics For Regression: Dr. Jasmeet Singh Assistant Professor, Csed Tiet, Patiala
Document13 pages
Evaluation Metrics For Regression: Dr. Jasmeet Singh Assistant Professor, Csed Tiet, Patiala
Dhananjay Chhabra
No ratings yet
5 - Causation and Effectuation Revised
Document47 pages
5 - Causation and Effectuation Revised
Dhananjay Chhabra
No ratings yet
Lab 5 Cyber Forensics
Document1 page
Lab 5 Cyber Forensics
Dhananjay Chhabra
No ratings yet
Run Seed VM On Virtualbox: User Manual
Document16 pages
Run Seed VM On Virtualbox: User Manual
Dhananjay Chhabra
No ratings yet