Cyber forensics pro...
 
Notifications
Clear all

Cyber forensics project ideas

5 Posts
3 Users
0 Likes
5,468 Views
(@iamgenius)
Posts: 24
Eminent Member
Topic starter
 

Hello again.

I'm taking my second cyber forensics course (just started), and there is a project that we need to deliver at the end. We need to do a paper and give a presentation. I'm still very new to the field and will be really grateful if you can suggest me some good project ideas, which I can do on my own with some research and help from google.

The previous course covered these topics

1. History of computer forensics; Impact on society; International law and cybercrime.
2. Investigative process and the role that forensics plays in the process; Data recovery
3. Basics of forensic protocols, the scientific method and sound reporting practices; Profiling the cybercrime.
4. Relationship of digital forensic examinations to examinations performed by other forensic science disciplines
5. Introduction to analysis procedures identification, preservation, examination, analysis and reporting (hands-on lab exercise)
6. Crime scene search and seizure techniques for digital evidence; Review of file system terminology
7. Intricacies and volatility of the electronic crime scene; Data analysis
8. Effective and efficient examination techniques for different types of investigations; Exploring the content of the Registry; Graphic systems
9. Preservation of other forms of evidence during the digital forensic process
10. Building a computer forensic unit

We learned how to

1.Explain the law as it relates to cyber crime
2.Apply cyber forensics tools to conduct an investigation
3.Identify, preserve, examine, analyze and report digital evidence
4. Forensically acquire digital data to the standards required for scientific evidence
5. Demonstrate an understanding of the principles for building and managing a cyber-forensics laboratory

The course gives these project ideas

o Experiment evaluation and analysis of published algorithm and approach
o Validation of forensic tools
o Memory analysis and what data can be extracted from memory
o Network forensic analysis of emerging applications in cyber crime

But they are not very specific.

I'm not really sure what to do. I usually pick topics that I enjoy and can easily work with, but I'm still new to digital forensics. There is one thing that I want to learn though, and it is mentioned above. It is how to extract information from RAM. But I have a bad experience with it. I remember that I was able to generate dump files, but I couldn't really do a thing with them. Are there programs which can make it simple to extract information from memory? Do you think a newbie like me can learn how to play with dumb files in a matter of 5 weeks? Will I be able to –for example– know the credentials a user used to get into his email account from memory?

Another thing I'm considering is performing a full acquisition of an Android phone and see what amount of data I can extract. Maybe worth it?

The last thing I considered is examining emails (headers, to and from fields, originating ip addresses…etc) and how that can help a digital investigator.

I want to pick something that I can do good at, but I feel I'm little lost. I have a pretty good background in general IT but not digital forensics.

Maybe I can evaluate a special Linux distribution specifically designed for digital forensics?

I appreciate your ideas and suggestions…

 
Posted : 26/01/2016 12:02 am
(@bithead)
Posts: 1206
Noble Member
 

Perhaps these pages will help
http//www.forensicfocus.com/Forums/viewtopic/t=6829/

http//www.forensicfocus.com/project-ideas

 
Posted : 26/01/2016 4:07 am
(@iamgenius)
Posts: 24
Eminent Member
Topic starter
 

Perhaps these pages will help
http//www.forensicfocus.com/Forums/viewtopic/t=6829/

http//www.forensicfocus.com/project-ideas

I appreciate it. That is a very good list. Now I need to carefully go through it and pick the one most appropriate for me.

I'll come back later, probably with some questions.

Thanks,

Saoud

 
Posted : 27/01/2016 12:10 am
MDCR
 MDCR
(@mdcr)
Posts: 376
Reputable Member
 

Data visualisation to identify patterns and events.

There is alot that can be done with free tools like D3/Vis.JS, Gephi and Maltego - the bang for the buck is crazy! No need to go buy overpriced stuff like Palantir or i2.

(Network forensics is a very good idea.)

 
Posted : 28/01/2016 3:55 pm
(@iamgenius)
Posts: 24
Eminent Member
Topic starter
 

Data visualization is out of my league I think.

Of these three topics, which one would you recommend to a beginner ? Something that I can find so much information about, try, experiment with and add some contributions

1-Cloud forensics

2-Cloud storage forensics

3-Mobile phones forensics

?

Also, do you think SSD forensics is a topic rich enough to do a project on? I'm thinking about investigating whether SSD's can be used to increase effectiveness of anit-forensics

Thanks

 
Posted : 31/01/2016 1:03 pm
Share: