Introduction to Autopsy Forensic Browser
GIAC Certified Forensic Examiner Objectives:
Fundamental Digital Forensics
- The candidate will demonstrate an understanding of forensic methodology, key forensic concepts, identifying types of evidence on current Windows operating systems and be familiar with the structure and composition of modern Windows file systems.
Foundations of Digital Forensics Acquisitions
- The candidate will demonstrate an understanding of the methodologies and tools used to collect and process digital forensic evidence.
Overview
This lab is part of a series of lab exercises intended to support courseware for Forensics training. The development of this document is funded by the Department of Labor (DOL) Trade Adjustment Assistance Community College and Career Training (TAACCCT) Grant No. TC-22525-11-60-A-48.
There is different digital forensic investigation software available to digital forensic specialists. We will investigate the Autopsy Forensic Browser, which is a free and open-source tool that can be used to examine disk images and perform forensic investigations. In this lab, students will use the Autopsy Forensic Browser as part of the forensic process.
OUTCOMES:
In this lab, you will learn to:
- Install the Autopsy Forensic Browser
- Create a case in Autopsy Forensic Browser
- Examine an image with Autopsy
- Generate a report