Abstract:
Computer usage is increased drastically over the few years. The usage of computers has become so common that now almost more then 70% people are aware of using computers for daily operations.
With the increase in computer usage computer crimes has also started taking different forms. Computer Forensic Basically helps police and other law enforcing agencies in finding legal evidence found in computers and digital storage mediums.
Computer forensics experts investigate data storage devices, such as hard drives, USB Drives, CD-ROMs, floppy disks, tape drives, etc., identifying sources of documentary or other digital evidence, preserving and analyzing evidence, and presenting findings.
This project aims to research, develop and test software-based write blockers and forensic imaging tools under the Linux and Windows operating systems. Investigators for the purpose of forensic investigation, take a digital copy of the storage media that is being investigated, in a process called imaging. Imaging takes a complete copy of the storage media by reading it in a sector-by-sector fashion and writing the data into a file or a series of files (called image files). To further ensure that the integrity of the original storage media is maintained during imaging specialized software or hardware to intercept and block write requests to the storage media (commonly known as a write blocker) may be deployed during the imaging phase. The main expected challenge is the development of software-based imager and write blocker.
