Hands-on labs	Forensic Intelligence Repository

===================

• Hands-on Digital Forensics Labs: designed for Students and Faculty
• Linux-based lab: All labs are purely based on Kali Linux
• Lab screenshots: Each lab has PPTs with instruction screenshots
• Comprehensive: Cover many topics in digital forensics
• Free: All tools are open source
• Updated: The project is funded by DOJ and will keep updating
• Two formalized forensic intelligence in JSON files based-on case studies

• Basic Computer Skills for Digital Forensics
  • Number Systems
  • PC Introduction
  • Windows Command Line Tutorial
  • Linux Command Line Tutorial
  • Advanced Linux Command Line Tutorial
• Computer and Digital Forensics (updated on Oct. 2021)
  • Introduction to Digital Forensics
  • Sleuth Kit Tutorial
  • USB Image Acquisition
  • Evidence Search Techniques
  • Data Carving
  • Steganography
  • Forensic Report Template
• Computer Forensics Case Study
  • Investigating P2P Data Leakage (added on June 2021)
  • Investigating NIST Data Leakage
  • Investigating Illegal Possession of Images
  • Investigating Email Harassment
  • Investigating Illegal File Transferring (Memory Forensics)
  • Investigating Hacking Case
• Mobile Forensics Case Study
  • Investigating Android 10 (added on Oct/24/2021)
  • iOS 13 (to be released...)
• Forensic Intelligence Repository
  • Email forensics
  • Illegal Possession of Images
• Tool Installation
  • Tools Used
  • Installation PPTs
  • Installation Scripts (see commands as follows)

# The following commands will install all tools needed for Data Leakage Case. We will upgrade the script to add more tools for other labs soon.

wget  https://raw.githubusercontent.com/frankwxu/digital-forensics-lab/main/Help/tool-install-zsh.sh
chmod +x tool-install-zsh.sh
./tool-install-zsh.sh

==============

The P2P data leakage case study is to help students to apply various forensic techniques to investigate intellectual property theft involving P2P. The study include

• A large and complex case involving a uTorrent client. The case is similar to NIST data leakage lab. However, it provides a clearer and more detailed timeline.
• Solid evidence with explanations. Each evidence that is associated with each activity is explained along with the timeline. We suggest using this before study NIST data leakage case study.
• 10 hands-on labs/topics in digital forensics

Topics Covered

==============

The case study is to investigate an image involving intellectual property theft. The study include

• A large and complex case study created by NIST. You can access the Senario, DD/Encase images. You can also find the solutions on their website.
• 13 hands-on labs/topics in digital forensics

Topics Covered

=====================

The case study is to investigate the illegal possession of Rhino images. This image was contributed by Dr. Golden G. Richard III, and was originally used in the DFRWS 2005 RODEO CHALLENGE. NIST hosts the USB DD image. A copy of the image is also available in the repository.

Topics Covered

=========

The case study is to investigate the harassment email sent by a student to a faculty member. The case is hosted by digitalcorpora.org. You can access the senario description and network traffic from their website. The repository only provides lab instructions.

Topics Covered

=========

The case study is to investigate computer memory for reconstructing a timeline of illegal data transferring. The case includes a scenario of transfer sensitive files from a server to a USB.

Topics Covered

=========

The case study, including a disk image provided by NIST is to investigate a hacker who intercepts internet traffic within range of Wireless Access Points. Note that the PPT is encrypted with a password as one of the major assignments. Email fxu at ubalt dot edu to ask the password if you are a faculty member.

Topics Covered

The image is created by Joshua Hickman and hosted by digitalcorpora.

=========

========

=============

• Frank Xu
• Malcolm Hayward
• Richard (Max) Wheeless