Computer Forensics

Introduction
Acquisition
- Acquisition Method
- Live Data Collection
EnCase
Nuix
Memory Analysis
Incident Response Artifacts
Others
Cloud
- Cloud Artifacts
- Azure Forensic

Powered by GitBook

On this page

Creating a Case
EnCase Folder Structure
EnCase View
Verify Evidence
Timeline view
Sort
Gallery view
Disk view
File Types view
Evidence Processor
File Signature Analysis
Create a new file signatures
Running File Signature Analysis against Selected Files
File Signature Analysis
Hash Analysis
Creating hash libraries and hash sets
Adding hash values to the hash sets and library
Using hash values to identify/exclude files
Hash Analysis Summary

Was this helpful?

EnCase

Basic EnCase

PreviousLive Data Collection NextAdvanced EnCase

Last updated 3 years ago

Was this helpful?