Abstract:
Computer forensics deals with the ways and methodologies for exploring a
computer system for the purpose of relating evidence to a particular event. The goal of
our project is to develop a toolkit-Win4tech for investigating a compromised/ misused
computer system. Win4Tech uses File system, System Registry, System Processes,
Opened Files, User Accounts and USB Records for extracting evidence. The tool will be
cost-effective and usable as compared to existing forensic toolkits.
