SlideShare a Scribd company logo

Forensics Investigation ReportAccuracy Inter.docx

Download as DOCX, PDF
L
laquandabignell

Forensics Investigation Report Accuracy International (AI) Prepared for Head of Forensic Department By < Your Name goes here > Table of Contents 1. INTRODUCTION 3 1.1 Nature of incident 3 1.1.1 Location 3 2. VICTIMS 3 2.1 Victim details 3 3. LOCATION OF EVIDENCE 3 3.1 Evidence description 3 3.1.1 System, Network, Server Descriptions 3 3.2 Seizure details 3 3.3 Handling Details (Chain of Custody) 3 3.4 Location of Evidence 4 4. DEFINITIONS 4 4.1 Definitions 4 4.2 Tools 4 5. PRESERVATION OF EVIDENCE 4 5.1 Validation of Original Evidence 4 5.1.1 Procedures 4 5.1.2 Result 5 5.1.3 Validation 5 5.2 Imaging 5 5.2.1 Procedures 5 5.2.2 Result 5 5.2.3 Validation 5 6. INITIAL EVALUATION OF THE EVIDENCE 5 6.1 Existing Data Details 5 6.1.1 . 5 6.1.2 5 7. ANALYSIS STEPS 5 7.1 Procedures 5 7.1.1 5 7.1.2 5 8. RESULTS 6 8.1 Pertinent Document Summaries 6 8.1.1 Document 1 Summary –  6 8.1.2 Document 2 Summary - 6 8.2 Pertinent Images Summary 6 8.2.1 Image 1 Summary –  6 8.2.2 Image 2 Summary –  6 9. CONCLUSIONS 6 9.1 Summary 6 1.  INTRODUCTION 1.1  Nature of incident  Accuracy International (AI) is a specialist British firearms manufacturer based in Portsmouth, Hampshire, England and best known for producing the Accuracy International Arctic Warfare series of precision sniper rifles. Earlier this year, AI's computer network was hit by a data stealing malware which cost thousands of pounds to recover from. As part of an ongoing covert investigation, the head of Security at AI (DG) has hired you to conduct a forensic investigation on an image of a USB device. The USB device, it is a non-company issued device, allegedly belonging to an employee Christian Macleod, a consultant and technical manager at AI for more than six years. The USB device in question allegedly was removed from Christian's workstation at AI while he was out of the office for lunch, the device was imaged and then it was plugged in back into Christian's workstation. You have been provided with a copy of that image (the original copy is at the moment secure in a secure locker at the security department). 1.1.1  Location Research and Development department 2.  VICTIMS 2.1  Victim details Accuracy International (AI)  is the victim in this case 3.  LOCATION OF EVIDENCE 3.1  Evidence description 3.1.1  System, Network, Server Descriptions 3.1.1.1  System 1  3.2  Seizure details An identical copy of the suspect’s USB stick has been made for Forensic analysis on 16 th  Feb 2015.  The USB stick was then returned to the suspect’s work computer, while he was at lunch. 3.3  Handling Details (Chain of Custody) 16/02/2015 12:30 seizure of the USB stick by investigator David Chadwick. 16/02/2015 12:45 an ISO image was created, which is a digitally identical copy of the original USB stick – verified by investigator Diane Gan 3.4  Location of Evidence The original ISO has been placed in the secure locker, No 1625 A copy of the ISO has been passed to the Forensic Department for anaylsis.

Education
1 of 10
Forensics Investigation Report Accuracy International (AI) Prepared for Head of Forensic Department By < Your Name goes here > Table of Contents 1. INTRODUCTION 3 1.1 Nature of incident 3 1.1.1
Location 3 2. VICTIMS 3 2.1 Victim details 3 3. LOCATION OF EVIDENCE 3 3.1 Evidence description 3 3.1.1 System, Network, Server Descriptions 3 3.2 Seizure details 3 3.3 Handling Details (Chain of Custody) 3 3.4 Location of Evidence 4 4. DEFINITIONS 4 4.1 Definitions 4 4.2 Tools 4 5.
PRESERVATION OF EVIDENCE 4 5.1 Validation of Original Evidence 4 5.1.1 Procedures 4 5.1.2 Result 5 5.1.3 Validation 5 5.2 Imaging 5 5.2.1 Procedures 5 5.2.2 Result 5 5.2.3 Validation 5 6. INITIAL EVALUATION OF THE EVIDENCE 5 6.1 Existing Data Details 5 6.1.1 . 5 6.1.2
5 7. ANALYSIS STEPS 5 7.1 Procedures 5 7.1.1 5 7.1.2 5 8. RESULTS 6 8.1 Pertinent Document Summaries 6 8.1.1 Document 1 Summary – 6 8.1.2 Document 2 Summary - 6 8.2 Pertinent Images Summary 6 8.2.1 Image 1 Summary – 6 8.2.2 Image 2 Summary – 6 9.
CONCLUSIONS 6 9.1 Summary 6 1. INTRODUCTION 1.1 Nature of incident Accuracy International (AI) is a specialist British firearms man ufacturer based in Portsmouth, Hampshire, England and best kn own for producing the Accuracy International Arctic Warfare se ries of precision sniper rifles. Earlier this year, AI's computer n etwork was hit by a data stealing malware which cost thousands of pounds to recover from. As part of an ongoing covert investi gation, the head of Security at AI (DG) has hired you to conduct a forensic investigation on an image of a USB device. The USB device, it is a non- company issued device, allegedly belonging to an employee Chr istian Macleod, a consultant and technical manager at AI for mo re than six years. The USB device in question allegedly was removed from Christi an's workstation at AI while he was out of the office for lunch, t he device was imaged and then it was plugged in back into Chri stian's workstation. You have been provided with a copy of that image (the original copy is at the moment secure in a secure loc ker at the security department). 1.1.1 Location Research and Development department
2. VICTIMS 2.1 Victim details Accuracy International (AI) is the victim in this case 3. LOCATION OF EVIDENCE 3.1 Evidence description 3.1.1 System, Network, Server Descriptions 3.1.1.1 System 1 3.2 Seizure details An identical copy of the suspect’s USB stick has been made for Forensic analysis on 16 th Feb 2015. The USB stick was then returned to the suspect’s work compute r, while he was at lunch. 3.3 Handling Details (Chain of Custody) 16/02/2015 12:30 seizure of the USB stick by investigator David Chadwick. 16/02/2015 12:45
an ISO image was created, which is a digitally identical copy of the original USB stick – verified by investigator Diane Gan 3.4 Location of Evidence The original ISO has been placed in the secure locker, No 1625 A copy of the ISO has been passed to the Forensic Department f or anaylsis 4. DEFINITIONS 4.1 Definitions Acquisition of Digital Evidence: Begins when information and/or physical items are collected or stored for examination purposes. The term "evidence" implies t hat the collection of evidence is recognized by the courts. The p rocess of collecting is also assumed to be a legal process and ap propriate for rules of evidence in that locality. A data object or physical item only becomes evidence when so deemed by a law enforcement official or designee. Data Objects: Objects or information of potential probative value that are ass ociated with physical items. Data objects may occur in different formats without altering the original information. Digital Evidence: Information of probative value stored or transmitted in digital f orm. Physical Items: Items on which data objects or information may be stored and/or through which data objects are transferred . Original Digital Evidence : Physical items and the data objects associated with such items at the time of acquisition or seizure. Duplicate Digital Evidence: An accurate digital reproduction of all data objects contained o n an original physical item.
Copy: An accurate reproduction of information contained on an origin al physical item, independent of the original physical item. 4.2 Tools 5. PRESERVATION OF EVIDENCE 5.1 Validation of Original Evidence 5.1.1 Procedures 5.1.2 Result 5.1.3 Validation 5.2 Imaging 5.2.1 Procedures 5.2.2 Result 5.2.3 Validation < Description of any validation here > 6. INITIAL EVALUATION OF THE EVIDENCE 6.1
Existing Data Details 6.1.1 . 6.1.2 7. ANALYSIS STEPS 7.1 Procedures 7.1.1 7.1.2 etc 8. RESULTS 8.1 Pertinent Document Summaries 8.1.1 Document 1 Summary – 8.1.2 Document 2 Summary - e>
8.2 Pertinent Images Summary 8.2.1 Image 1 Summary – 8.2.2 Image 2 Summary – 9. CONCLUSIONS 9.1 Executive Summary

Recommended

Chapter 3 cmp forensic
Chapter 3 cmp forensicChapter 3 cmp forensic
Chapter 3 cmp forensicshahhardik27
 
Home Monitoring: Video Gaming Technology to Detect Falls
Home Monitoring: Video Gaming Technology to Detect FallsHome Monitoring: Video Gaming Technology to Detect Falls
Home Monitoring: Video Gaming Technology to Detect FallsTherese Tisseverasinghe
 
IT forensic
IT forensicIT forensic
IT forensicRupesh Verma
 
Digital Evidence by Raghu Khimani
Digital Evidence by Raghu KhimaniDigital Evidence by Raghu Khimani
Digital Evidence by Raghu KhimaniDr Raghu Khimani
 
Automated Live Forensics Analysis for Volatile Data Acquisition
Automated Live Forensics Analysis for Volatile Data AcquisitionAutomated Live Forensics Analysis for Volatile Data Acquisition
Automated Live Forensics Analysis for Volatile Data AcquisitionIJERA Editor
 
2022-05-12 Live Forensics for Law Enforcement @UniPD
2022-05-12 Live Forensics for Law Enforcement @UniPD2022-05-12 Live Forensics for Law Enforcement @UniPD
2022-05-12 Live Forensics for Law Enforcement @UniPDDavide Gabrini
 
Review on Cyber Forensics - Copy.pptx
Review on Cyber Forensics - Copy.pptxReview on Cyber Forensics - Copy.pptx
Review on Cyber Forensics - Copy.pptxVaishnaviBorse8
 
Computer Forensics
Computer ForensicsComputer Forensics
Computer ForensicsAlchemist095
 

Recommended

Chapter 3 cmp forensic
Chapter 3 cmp forensicChapter 3 cmp forensic
Chapter 3 cmp forensicshahhardik27
 
Home Monitoring: Video Gaming Technology to Detect Falls
Home Monitoring: Video Gaming Technology to Detect FallsHome Monitoring: Video Gaming Technology to Detect Falls
Home Monitoring: Video Gaming Technology to Detect FallsTherese Tisseverasinghe
 
IT forensic
IT forensicIT forensic
IT forensicRupesh Verma
 
Digital Evidence by Raghu Khimani
Digital Evidence by Raghu KhimaniDigital Evidence by Raghu Khimani
Digital Evidence by Raghu KhimaniDr Raghu Khimani
 
Automated Live Forensics Analysis for Volatile Data Acquisition
Automated Live Forensics Analysis for Volatile Data AcquisitionAutomated Live Forensics Analysis for Volatile Data Acquisition
Automated Live Forensics Analysis for Volatile Data AcquisitionIJERA Editor
 
2022-05-12 Live Forensics for Law Enforcement @UniPD
2022-05-12 Live Forensics for Law Enforcement @UniPD2022-05-12 Live Forensics for Law Enforcement @UniPD
2022-05-12 Live Forensics for Law Enforcement @UniPDDavide Gabrini
 
Review on Cyber Forensics - Copy.pptx
Review on Cyber Forensics - Copy.pptxReview on Cyber Forensics - Copy.pptx
Review on Cyber Forensics - Copy.pptxVaishnaviBorse8
 
Computer Forensics
Computer ForensicsComputer Forensics
Computer ForensicsAlchemist095
 
Unit-2 Process of Digital Forensics [Autosaved].pptx
Unit-2 Process of Digital Forensics [Autosaved].pptxUnit-2 Process of Digital Forensics [Autosaved].pptx
Unit-2 Process of Digital Forensics [Autosaved].pptxSunny94841
 
Forensic Procedures
Forensic ProceduresForensic Procedures
Forensic ProceduresRichard Woodford
 
IEA Presentation - Electronic Records & Electronic Evidence: Section 65B
IEA Presentation - Electronic Records & Electronic Evidence: Section 65BIEA Presentation - Electronic Records & Electronic Evidence: Section 65B
IEA Presentation - Electronic Records & Electronic Evidence: Section 65Bbanerjeerohit
 
After the Breach
After the BreachAfter the Breach
After the BreachGary Wilhelm
 
Ethical Hacking And Computer Forensics
Ethical Hacking And Computer ForensicsEthical Hacking And Computer Forensics
Ethical Hacking And Computer ForensicsShanaAneevan
 
Cyber forensics and investigations
Cyber forensics and investigationsCyber forensics and investigations
Cyber forensics and investigationsJay Mehta
 
BlueHat Seattle 2019 || Autopsies of Recent DFIR Investigations
BlueHat Seattle 2019 || Autopsies of Recent DFIR InvestigationsBlueHat Seattle 2019 || Autopsies of Recent DFIR Investigations
BlueHat Seattle 2019 || Autopsies of Recent DFIR InvestigationsBlueHat Security Conference
 
Diving into Digital Forensics
Diving into Digital Forensics Diving into Digital Forensics
Diving into Digital Forensics Pranjal Vyas
 
Digital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxDigital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxShubhamKadam807802
 
Digital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxDigital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxShubhamKadam807802
 
Lecture2 Introduction to Digital Forensics.ppt
Lecture2 Introduction to Digital Forensics.pptLecture2 Introduction to Digital Forensics.ppt
Lecture2 Introduction to Digital Forensics.pptSurajgroupsvideo
 
04 Evidence Collection and Data Seizure - Notes
04 Evidence Collection and Data Seizure - Notes04 Evidence Collection and Data Seizure - Notes
04 Evidence Collection and Data Seizure - NotesKranthi
 
Sound E-Discovery Collection Practices
Sound E-Discovery Collection PracticesSound E-Discovery Collection Practices
Sound E-Discovery Collection PracticesSeth Row
 
Electronic Evidence Power Point V6 Final
Electronic Evidence Power Point V6 FinalElectronic Evidence Power Point V6 Final
Electronic Evidence Power Point V6 FinalWilliam Hamilton
 
Cuber crime and its investigation
Cuber crime and its investigationCuber crime and its investigation
Cuber crime and its investigationBundelkhand University
 
Codebits 2010
Codebits 2010Codebits 2010
Codebits 2010Tiago Henriques
 
pres_drone_forensics_program.pptx
pres_drone_forensics_program.pptxpres_drone_forensics_program.pptx
pres_drone_forensics_program.pptxVolgaTC
 
Collecting and preserving digital evidence
Collecting and preserving digital evidenceCollecting and preserving digital evidence
Collecting and preserving digital evidenceOnline
 
Cyber evidence at crime scene
Cyber evidence at crime sceneCyber evidence at crime scene
Cyber evidence at crime sceneApplied Forensic Research Sciences
 
Evidence Collection Process
Evidence Collection ProcessEvidence Collection Process
Evidence Collection ProcessMichelle Singh
 
Give an example of a parent conference to explain to the parents the.docx
Give an example of a parent conference to explain to the parents the.docxGive an example of a parent conference to explain to the parents the.docx
Give an example of a parent conference to explain to the parents the.docxlaquandabignell
 
Gender and sexuality are intertwined in many cultures. (Gardiner & K.docx
Gender and sexuality are intertwined in many cultures. (Gardiner & K.docxGender and sexuality are intertwined in many cultures. (Gardiner & K.docx
Gender and sexuality are intertwined in many cultures. (Gardiner & K.docxlaquandabignell
 

More Related Content

Similar to Forensics Investigation ReportAccuracy Inter.docx

Unit-2 Process of Digital Forensics [Autosaved].pptx
Unit-2 Process of Digital Forensics [Autosaved].pptxUnit-2 Process of Digital Forensics [Autosaved].pptx
Unit-2 Process of Digital Forensics [Autosaved].pptxSunny94841
 
IEA Presentation - Electronic Records & Electronic Evidence: Section 65B
IEA Presentation - Electronic Records & Electronic Evidence: Section 65BIEA Presentation - Electronic Records & Electronic Evidence: Section 65B
IEA Presentation - Electronic Records & Electronic Evidence: Section 65Bbanerjeerohit
 
Ethical Hacking And Computer Forensics
Ethical Hacking And Computer ForensicsEthical Hacking And Computer Forensics
Ethical Hacking And Computer ForensicsShanaAneevan
 
Cyber forensics and investigations
Cyber forensics and investigationsCyber forensics and investigations
Cyber forensics and investigationsJay Mehta
 
BlueHat Seattle 2019 || Autopsies of Recent DFIR Investigations
BlueHat Seattle 2019 || Autopsies of Recent DFIR InvestigationsBlueHat Seattle 2019 || Autopsies of Recent DFIR Investigations
BlueHat Seattle 2019 || Autopsies of Recent DFIR InvestigationsBlueHat Security Conference
 
Diving into Digital Forensics
Diving into Digital Forensics Diving into Digital Forensics
Diving into Digital Forensics Pranjal Vyas
 
Digital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxDigital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxShubhamKadam807802
 
Digital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxDigital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxShubhamKadam807802
 
Lecture2 Introduction to Digital Forensics.ppt
Lecture2 Introduction to Digital Forensics.pptLecture2 Introduction to Digital Forensics.ppt
Lecture2 Introduction to Digital Forensics.pptSurajgroupsvideo
 
04 Evidence Collection and Data Seizure - Notes
04 Evidence Collection and Data Seizure - Notes04 Evidence Collection and Data Seizure - Notes
04 Evidence Collection and Data Seizure - NotesKranthi
 
Sound E-Discovery Collection Practices
Sound E-Discovery Collection PracticesSound E-Discovery Collection Practices
Sound E-Discovery Collection PracticesSeth Row
 
Electronic Evidence Power Point V6 Final
Electronic Evidence Power Point V6 FinalElectronic Evidence Power Point V6 Final
Electronic Evidence Power Point V6 FinalWilliam Hamilton
 
pres_drone_forensics_program.pptx
pres_drone_forensics_program.pptxpres_drone_forensics_program.pptx
pres_drone_forensics_program.pptxVolgaTC
 
Collecting and preserving digital evidence
Collecting and preserving digital evidenceCollecting and preserving digital evidence
Collecting and preserving digital evidenceOnline
 
Evidence Collection Process
Evidence Collection ProcessEvidence Collection Process
Evidence Collection ProcessMichelle Singh
 

Similar to Forensics Investigation ReportAccuracy Inter.docx (20)

Unit-2 Process of Digital Forensics [Autosaved].pptx
Unit-2 Process of Digital Forensics [Autosaved].pptxUnit-2 Process of Digital Forensics [Autosaved].pptx
Unit-2 Process of Digital Forensics [Autosaved].pptx
 
Forensic Procedures
Forensic ProceduresForensic Procedures
Forensic Procedures
 
IEA Presentation - Electronic Records & Electronic Evidence: Section 65B
IEA Presentation - Electronic Records & Electronic Evidence: Section 65BIEA Presentation - Electronic Records & Electronic Evidence: Section 65B
IEA Presentation - Electronic Records & Electronic Evidence: Section 65B
 
After the Breach
After the BreachAfter the Breach
After the Breach
 
Ethical Hacking And Computer Forensics
Ethical Hacking And Computer ForensicsEthical Hacking And Computer Forensics
Ethical Hacking And Computer Forensics
 
Cyber forensics and investigations
Cyber forensics and investigationsCyber forensics and investigations
Cyber forensics and investigations
 
BlueHat Seattle 2019 || Autopsies of Recent DFIR Investigations
BlueHat Seattle 2019 || Autopsies of Recent DFIR InvestigationsBlueHat Seattle 2019 || Autopsies of Recent DFIR Investigations
BlueHat Seattle 2019 || Autopsies of Recent DFIR Investigations
 
Diving into Digital Forensics
Diving into Digital Forensics Diving into Digital Forensics
Diving into Digital Forensics
 
Digital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxDigital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptx
 
Digital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptxDigital emerging trends in computer engineering Evidences.pptx
Digital emerging trends in computer engineering Evidences.pptx
 
Lecture2 Introduction to Digital Forensics.ppt
Lecture2 Introduction to Digital Forensics.pptLecture2 Introduction to Digital Forensics.ppt
Lecture2 Introduction to Digital Forensics.ppt
 
04 Evidence Collection and Data Seizure - Notes
04 Evidence Collection and Data Seizure - Notes04 Evidence Collection and Data Seizure - Notes
04 Evidence Collection and Data Seizure - Notes
 
Sound E-Discovery Collection Practices
Sound E-Discovery Collection PracticesSound E-Discovery Collection Practices
Sound E-Discovery Collection Practices
 
Electronic Evidence Power Point V6 Final
Electronic Evidence Power Point V6 FinalElectronic Evidence Power Point V6 Final
Electronic Evidence Power Point V6 Final
 
Cuber crime and its investigation
Cuber crime and its investigationCuber crime and its investigation
Cuber crime and its investigation
 
Codebits 2010
Codebits 2010Codebits 2010
Codebits 2010
 
pres_drone_forensics_program.pptx
pres_drone_forensics_program.pptxpres_drone_forensics_program.pptx
pres_drone_forensics_program.pptx
 
Collecting and preserving digital evidence
Collecting and preserving digital evidenceCollecting and preserving digital evidence
Collecting and preserving digital evidence
 
Cyber evidence at crime scene
Cyber evidence at crime sceneCyber evidence at crime scene
Cyber evidence at crime scene
 
Evidence Collection Process
Evidence Collection ProcessEvidence Collection Process
Evidence Collection Process
 

More from laquandabignell

Give an example of a parent conference to explain to the parents the.docx
Give an example of a parent conference to explain to the parents the.docxGive an example of a parent conference to explain to the parents the.docx
Give an example of a parent conference to explain to the parents the.docxlaquandabignell
 
Gender and sexuality are intertwined in many cultures. (Gardiner & K.docx
Gender and sexuality are intertwined in many cultures. (Gardiner & K.docxGender and sexuality are intertwined in many cultures. (Gardiner & K.docx
Gender and sexuality are intertwined in many cultures. (Gardiner & K.docxlaquandabignell
 
General Directions The length of the essay is roughly 750 words. .docx
General Directions The length of the essay is roughly 750 words. .docxGeneral Directions The length of the essay is roughly 750 words. .docx
General Directions The length of the essay is roughly 750 words. .docxlaquandabignell
 
Give an example of technological innovation from the last two decade.docx
Give an example of technological innovation from the last two decade.docxGive an example of technological innovation from the last two decade.docx
Give an example of technological innovation from the last two decade.docxlaquandabignell
 
Give A Description of the selected disorder (Identify the DSM di.docx
Give A Description of the selected disorder (Identify the DSM di.docxGive A Description of the selected disorder (Identify the DSM di.docx
Give A Description of the selected disorder (Identify the DSM di.docxlaquandabignell
 
Generating Ideas for WritingWriting is a selection of words and .docx
Generating Ideas for WritingWriting is a selection of words and .docxGenerating Ideas for WritingWriting is a selection of words and .docx
Generating Ideas for WritingWriting is a selection of words and .docxlaquandabignell
 
Geography Project – Rationale InstructionsYou will identify a .docx
Geography Project – Rationale InstructionsYou will identify a .docxGeography Project – Rationale InstructionsYou will identify a .docx
Geography Project – Rationale InstructionsYou will identify a .docxlaquandabignell
 
Geography Project – Project Plan InstructionsFollowing your Module.docx
Geography Project – Project Plan InstructionsFollowing your Module.docxGeography Project – Project Plan InstructionsFollowing your Module.docx
Geography Project – Project Plan InstructionsFollowing your Module.docxlaquandabignell
 
Geographic LocationThey are found throughout the Pacific, Atlan.docx
Geographic LocationThey are found throughout the Pacific, Atlan.docxGeographic LocationThey are found throughout the Pacific, Atlan.docx
Geographic LocationThey are found throughout the Pacific, Atlan.docxlaquandabignell
 
Geographers have been working with geographic information systems (G.docx
Geographers have been working with geographic information systems (G.docxGeographers have been working with geographic information systems (G.docx
Geographers have been working with geographic information systems (G.docxlaquandabignell
 
General Moters was selected for week 2.Find the company select.docx
General Moters was selected for week 2.Find the company select.docxGeneral Moters was selected for week 2.Find the company select.docx
General Moters was selected for week 2.Find the company select.docxlaquandabignell
 
Geography Project – Outline InstructionsReferencing the Geograph.docx
Geography Project – Outline InstructionsReferencing the Geograph.docxGeography Project – Outline InstructionsReferencing the Geograph.docx
Geography Project – Outline InstructionsReferencing the Geograph.docxlaquandabignell
 
give a general historical background on CongoWhich European Count.docx
give a general historical background on CongoWhich European Count.docxgive a general historical background on CongoWhich European Count.docx
give a general historical background on CongoWhich European Count.docxlaquandabignell
 
Geneticists compare DNA base sequences among organisms and from th.docx
Geneticists compare DNA base sequences among organisms and from th.docxGeneticists compare DNA base sequences among organisms and from th.docx
Geneticists compare DNA base sequences among organisms and from th.docxlaquandabignell
 
Gene A crosses over 16.5 percent of the time with gene B. Gene B c.docx
Gene A crosses over 16.5 percent of the time with gene B. Gene B c.docxGene A crosses over 16.5 percent of the time with gene B. Gene B c.docx
Gene A crosses over 16.5 percent of the time with gene B. Gene B c.docxlaquandabignell
 
Generations in the WorkplaceFor the first time in history, four .docx
Generations in the WorkplaceFor the first time in history, four .docxGenerations in the WorkplaceFor the first time in history, four .docx
Generations in the WorkplaceFor the first time in history, four .docxlaquandabignell
 
geo 101 Q&A1. We see may cultures disappearing today. Will there c.docx
geo 101 Q&A1. We see may cultures disappearing today. Will there c.docxgeo 101 Q&A1. We see may cultures disappearing today. Will there c.docx
geo 101 Q&A1. We see may cultures disappearing today. Will there c.docxlaquandabignell
 
Genre, a category of artistic production characterized by similariti.docx
Genre, a category of artistic production characterized by similariti.docxGenre, a category of artistic production characterized by similariti.docx
Genre, a category of artistic production characterized by similariti.docxlaquandabignell
 
Geert Hofstede is one of the leading experts on intercultural commun.docx
Geert Hofstede is one of the leading experts on intercultural commun.docxGeert Hofstede is one of the leading experts on intercultural commun.docx
Geert Hofstede is one of the leading experts on intercultural commun.docxlaquandabignell
 
Gen499Discussion #1 Examine the relationship between adva.docx
Gen499Discussion #1 Examine the relationship between adva.docxGen499Discussion #1 Examine the relationship between adva.docx
Gen499Discussion #1 Examine the relationship between adva.docxlaquandabignell
 

More from laquandabignell (20)

Give an example of a parent conference to explain to the parents the.docx
Give an example of a parent conference to explain to the parents the.docxGive an example of a parent conference to explain to the parents the.docx
Give an example of a parent conference to explain to the parents the.docx
 
Gender and sexuality are intertwined in many cultures. (Gardiner & K.docx
Gender and sexuality are intertwined in many cultures. (Gardiner & K.docxGender and sexuality are intertwined in many cultures. (Gardiner & K.docx
Gender and sexuality are intertwined in many cultures. (Gardiner & K.docx
 
General Directions The length of the essay is roughly 750 words. .docx
General Directions The length of the essay is roughly 750 words. .docxGeneral Directions The length of the essay is roughly 750 words. .docx
General Directions The length of the essay is roughly 750 words. .docx
 
Give an example of technological innovation from the last two decade.docx
Give an example of technological innovation from the last two decade.docxGive an example of technological innovation from the last two decade.docx
Give an example of technological innovation from the last two decade.docx
 
Give A Description of the selected disorder (Identify the DSM di.docx
Give A Description of the selected disorder (Identify the DSM di.docxGive A Description of the selected disorder (Identify the DSM di.docx
Give A Description of the selected disorder (Identify the DSM di.docx
 
Generating Ideas for WritingWriting is a selection of words and .docx
Generating Ideas for WritingWriting is a selection of words and .docxGenerating Ideas for WritingWriting is a selection of words and .docx
Generating Ideas for WritingWriting is a selection of words and .docx
 
Geography Project – Rationale InstructionsYou will identify a .docx
Geography Project – Rationale InstructionsYou will identify a .docxGeography Project – Rationale InstructionsYou will identify a .docx
Geography Project – Rationale InstructionsYou will identify a .docx
 
Geography Project – Project Plan InstructionsFollowing your Module.docx
Geography Project – Project Plan InstructionsFollowing your Module.docxGeography Project – Project Plan InstructionsFollowing your Module.docx
Geography Project – Project Plan InstructionsFollowing your Module.docx
 
Geographic LocationThey are found throughout the Pacific, Atlan.docx
Geographic LocationThey are found throughout the Pacific, Atlan.docxGeographic LocationThey are found throughout the Pacific, Atlan.docx
Geographic LocationThey are found throughout the Pacific, Atlan.docx
 
Geographers have been working with geographic information systems (G.docx
Geographers have been working with geographic information systems (G.docxGeographers have been working with geographic information systems (G.docx
Geographers have been working with geographic information systems (G.docx
 
General Moters was selected for week 2.Find the company select.docx
General Moters was selected for week 2.Find the company select.docxGeneral Moters was selected for week 2.Find the company select.docx
General Moters was selected for week 2.Find the company select.docx
 
Geography Project – Outline InstructionsReferencing the Geograph.docx
Geography Project – Outline InstructionsReferencing the Geograph.docxGeography Project – Outline InstructionsReferencing the Geograph.docx
Geography Project – Outline InstructionsReferencing the Geograph.docx
 
give a general historical background on CongoWhich European Count.docx
give a general historical background on CongoWhich European Count.docxgive a general historical background on CongoWhich European Count.docx
give a general historical background on CongoWhich European Count.docx
 
Geneticists compare DNA base sequences among organisms and from th.docx
Geneticists compare DNA base sequences among organisms and from th.docxGeneticists compare DNA base sequences among organisms and from th.docx
Geneticists compare DNA base sequences among organisms and from th.docx
 
Gene A crosses over 16.5 percent of the time with gene B. Gene B c.docx
Gene A crosses over 16.5 percent of the time with gene B. Gene B c.docxGene A crosses over 16.5 percent of the time with gene B. Gene B c.docx
Gene A crosses over 16.5 percent of the time with gene B. Gene B c.docx
 
Generations in the WorkplaceFor the first time in history, four .docx
Generations in the WorkplaceFor the first time in history, four .docxGenerations in the WorkplaceFor the first time in history, four .docx
Generations in the WorkplaceFor the first time in history, four .docx
 
geo 101 Q&A1. We see may cultures disappearing today. Will there c.docx
geo 101 Q&A1. We see may cultures disappearing today. Will there c.docxgeo 101 Q&A1. We see may cultures disappearing today. Will there c.docx
geo 101 Q&A1. We see may cultures disappearing today. Will there c.docx
 
Genre, a category of artistic production characterized by similariti.docx
Genre, a category of artistic production characterized by similariti.docxGenre, a category of artistic production characterized by similariti.docx
Genre, a category of artistic production characterized by similariti.docx
 
Geert Hofstede is one of the leading experts on intercultural commun.docx
Geert Hofstede is one of the leading experts on intercultural commun.docxGeert Hofstede is one of the leading experts on intercultural commun.docx
Geert Hofstede is one of the leading experts on intercultural commun.docx
 
Gen499Discussion #1 Examine the relationship between adva.docx
Gen499Discussion #1 Examine the relationship between adva.docxGen499Discussion #1 Examine the relationship between adva.docx
Gen499Discussion #1 Examine the relationship between adva.docx
 

Recently uploaded

Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104misteraugie
 
1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdfQucHHunhnh
 
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfBASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfSoniaTolstoy
 
CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxGaneshChakor2
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Krashi Coaching
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxpboyjonauth
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introductionMaksud Ahmed
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeThiyagu K
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphThiyagu K
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactPECB
 
Arihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfArihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfchloefrazer622
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Educationpboyjonauth
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxNirmalaLoungPoorunde1
 
Privatization and Disinvestment - Meaning, Objectives, Advantages and Disadva...
Privatization and Disinvestment - Meaning, Objectives, Advantages and Disadva...Privatization and Disinvestment - Meaning, Objectives, Advantages and Disadva...
Privatization and Disinvestment - Meaning, Objectives, Advantages and Disadva...RKavithamani
 
mini mental status format.docx
mini mental status format.docxmini mental status format.docx
mini mental status format.docxPoojaSen20
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityGeoBlogs
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxVS Mahajan Coaching Centre
 
The basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptxThe basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptxheathfieldcps1
 
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdfssuser54595a
 

Recently uploaded (20)

Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104
 
1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf
 
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfBASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
 
CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptx
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptx
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introduction
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and Mode
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot Graph
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global Impact
 
Arihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfArihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdf
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Education
 
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdfTataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptx
 
Privatization and Disinvestment - Meaning, Objectives, Advantages and Disadva...
Privatization and Disinvestment - Meaning, Objectives, Advantages and Disadva...Privatization and Disinvestment - Meaning, Objectives, Advantages and Disadva...
Privatization and Disinvestment - Meaning, Objectives, Advantages and Disadva...
 
mini mental status format.docx
mini mental status format.docxmini mental status format.docx
mini mental status format.docx
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activity
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
 
The basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptxThe basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptx
 
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
 

Forensics Investigation ReportAccuracy Inter.docx

  • 1. Forensics Investigation Report Accuracy International (AI) Prepared for Head of Forensic Department By < Your Name goes here > Table of Contents 1. INTRODUCTION 3 1.1 Nature of incident 3 1.1.1
  • 2. Location 3 2. VICTIMS 3 2.1 Victim details 3 3. LOCATION OF EVIDENCE 3 3.1 Evidence description 3 3.1.1 System, Network, Server Descriptions 3 3.2 Seizure details 3 3.3 Handling Details (Chain of Custody) 3 3.4 Location of Evidence 4 4. DEFINITIONS 4 4.1 Definitions 4 4.2 Tools 4 5.
  • 3. PRESERVATION OF EVIDENCE 4 5.1 Validation of Original Evidence 4 5.1.1 Procedures 4 5.1.2 Result 5 5.1.3 Validation 5 5.2 Imaging 5 5.2.1 Procedures 5 5.2.2 Result 5 5.2.3 Validation 5 6. INITIAL EVALUATION OF THE EVIDENCE 5 6.1 Existing Data Details 5 6.1.1 . 5 6.1.2
  • 4. 5 7. ANALYSIS STEPS 5 7.1 Procedures 5 7.1.1 5 7.1.2 5 8. RESULTS 6 8.1 Pertinent Document Summaries 6 8.1.1 Document 1 Summary – 6 8.1.2 Document 2 Summary - 6 8.2 Pertinent Images Summary 6 8.2.1 Image 1 Summary – 6 8.2.2 Image 2 Summary – 6 9.
  • 5. CONCLUSIONS 6 9.1 Summary 6 1. INTRODUCTION 1.1 Nature of incident Accuracy International (AI) is a specialist British firearms man ufacturer based in Portsmouth, Hampshire, England and best kn own for producing the Accuracy International Arctic Warfare se ries of precision sniper rifles. Earlier this year, AI's computer n etwork was hit by a data stealing malware which cost thousands of pounds to recover from. As part of an ongoing covert investi gation, the head of Security at AI (DG) has hired you to conduct a forensic investigation on an image of a USB device. The USB device, it is a non- company issued device, allegedly belonging to an employee Chr istian Macleod, a consultant and technical manager at AI for mo re than six years. The USB device in question allegedly was removed from Christi an's workstation at AI while he was out of the office for lunch, t he device was imaged and then it was plugged in back into Chri stian's workstation. You have been provided with a copy of that image (the original copy is at the moment secure in a secure loc ker at the security department). 1.1.1 Location Research and Development department
  • 6. 2. VICTIMS 2.1 Victim details Accuracy International (AI) is the victim in this case 3. LOCATION OF EVIDENCE 3.1 Evidence description 3.1.1 System, Network, Server Descriptions 3.1.1.1 System 1 3.2 Seizure details An identical copy of the suspect’s USB stick has been made for Forensic analysis on 16 th Feb 2015. The USB stick was then returned to the suspect’s work compute r, while he was at lunch. 3.3 Handling Details (Chain of Custody) 16/02/2015 12:30 seizure of the USB stick by investigator David Chadwick. 16/02/2015 12:45
  • 7. an ISO image was created, which is a digitally identical copy of the original USB stick – verified by investigator Diane Gan 3.4 Location of Evidence The original ISO has been placed in the secure locker, No 1625 A copy of the ISO has been passed to the Forensic Department f or anaylsis 4. DEFINITIONS 4.1 Definitions Acquisition of Digital Evidence: Begins when information and/or physical items are collected or stored for examination purposes. The term "evidence" implies t hat the collection of evidence is recognized by the courts. The p rocess of collecting is also assumed to be a legal process and ap propriate for rules of evidence in that locality. A data object or physical item only becomes evidence when so deemed by a law enforcement official or designee. Data Objects: Objects or information of potential probative value that are ass ociated with physical items. Data objects may occur in different formats without altering the original information. Digital Evidence: Information of probative value stored or transmitted in digital f orm. Physical Items: Items on which data objects or information may be stored and/or through which data objects are transferred . Original Digital Evidence : Physical items and the data objects associated with such items at the time of acquisition or seizure. Duplicate Digital Evidence: An accurate digital reproduction of all data objects contained o n an original physical item.
  • 8. Copy: An accurate reproduction of information contained on an origin al physical item, independent of the original physical item. 4.2 Tools 5. PRESERVATION OF EVIDENCE 5.1 Validation of Original Evidence 5.1.1 Procedures 5.1.2 Result 5.1.3 Validation 5.2 Imaging 5.2.1 Procedures 5.2.2 Result 5.2.3 Validation < Description of any validation here > 6. INITIAL EVALUATION OF THE EVIDENCE 6.1
  • 9. Existing Data Details 6.1.1 . 6.1.2 7. ANALYSIS STEPS 7.1 Procedures 7.1.1 7.1.2 etc 8. RESULTS 8.1 Pertinent Document Summaries 8.1.1 Document 1 Summary – 8.1.2 Document 2 Summary - e>
  • 10. 8.2 Pertinent Images Summary 8.2.1 Image 1 Summary – 8.2.2 Image 2 Summary – 9. CONCLUSIONS 9.1 Executive Summary