Skip to main content
Journal ArticleOPEN ACCESS

Adaptation of PyFlag to Efficient Analysis of Seized Computer Data Storage

  • Byrski A
  • Stryjewski W
  • Czechowicz B
Journal of Digital Forensics, Security and Law (2010)
DOI: 10.15394/jdfsl.2010.1071
N/ACitations
Citations of this article
8Readers
Mendeley users who have this article in their library.

Abstract

Based on existing software aimed at investigation support in the analysis of computer data storage seized during investigation (PyFlag), an extension is proposed involving the introduction of dedicated components for data identification and filtering. Hash codes for popular software contained in NIST/NSRL database are considered in order to avoid unwanted files while searching and to classify them into several categories. The extension allows for further analysis, e.g. using artificial intelligence methods. The considerations are illustrated by the overview of the system's design.

Cite

CITATION STYLE

APA

Byrski, A., Stryjewski, W., & Czechowicz, B. (2010). Adaptation of PyFlag to Efficient Analysis of Seized Computer Data Storage. Journal of Digital Forensics, Security and Law. https://doi.org/10.15394/jdfsl.2010.1071

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free