Please enable JavaScript.
Coggle requires JavaScript to display documents.
P2P Case Study - Coggle Diagram
P2P Case Study
Steps for investigation
- examine the dd image and file system
-
-
- mount the image to get access
-
-
- Examine the registry files based on system and software
- examine the timestamp of the files
- generate the .csv file based on details of image
-
- search the files based on strings or extensions to get exact file
- create the files and copy the data from image
- Examine the MFT data files
- extract the data from hidden files (based on numbers also)
-
- Examine the timelines for exact timestamp
-
- get the records from journals
-
-
- Examine the data files through strings
- Examine the files based on installation and uninstall
-
- access the original downloaded files through torrent
-
- create files based on IP address and port numbers
-
- Access the torrent files of system (edit files)
-
- Get the MP3 files from disk image
- get the hexa details of the image files
- Thunderbird (1).lnk (to get the details of email)
-
- Get the access to mails and listen the hidden music file
- Get the http request and response history
- Get the history files based on the timeline through database
- Track the file used to transfer the data through online website
- Finally,the account named as blowtorch found
-
-
-
-
-
-