Starting a New Digital Forensic Investigation Case in Autopsy 4.19+

preview_player
Показать описание
This is a mini-course on Autopsy. See chapter times below.

Autopsy is a free, open-source, full-features digital forensic investigation tool kit. It is developed by Basis Technology and a large open-source community. You can use Autopsy as the basis to conduct a full digital forensic investigation. You can also expand Autopsy with modules written in Java and Python.

Thank you to our Members and Patrons, but especially to our Investigators, TheRantingGeek and Roman! Thank you so much!

We take you through how to start a digital investigation case in Autopsy. From organizing your data, starting your forensic documentation, processing case data, forensic analysis workflow, and generating reports.

00:00 Starting a digital investigation with Autopsy
00:11 Setting up your forensic workstation
00:37 Organize case files
02:42 Start your documentation!
03:06 Organizing suspect image data
04:33 Starting a new case in Autopsy
04:42 Autopsy: Case Information
05:59 Autopsy: Optional Information
06:57 Autopsy: Select Host
07:39 Autopsy: Select Data Source Type
09:02 Autopsy: Select Data Source
10:27 Autopsy: Configure Ingest
10:46 Modules: Recent Activity
11:09 Modules: Hash Lookup
12:29 Modules: File Type Identification
14:10 Modules: Extension Mismatch Detector
16:03 Modules: Embedded File Extractor
16:24 Modules: Picture Analyzer
16:45 Modules: Keyword Search
19:34 Modules: Email Parser
19:42 Modules: Encryption Detection
19:58 Modules: Interesting Files Identifier
20:41 Modules: Central Repository
22:10 Modules: PhotoRec Carver
22:42 Modules: Virtual Machine Extractor
23:00 Modules: Data Source Integrity
23:17 Modules: ALEAPP
23:34 Modules: Plaso
23:51 Modules: YARA Analyzer
24:17 Modules: iLEAPP
24:33 Modules: Android Analyzer
24:38 Autopsy module selection strategy
25:13 Autopsy: Add Data Source
25:42 Autopsy: Processed Data View
25:58 Autopsy: Main file view
26:18 Autopsy: File detail view
27:58 Autopsy: Filters and views
28:55 Autopsy: Deleted files filter
29:59 Autopsy: Data Artifacts, etc
30:22 Example investigation workflow
30:43 Case-specific keyword search
31:21 Tagging relevant items
34:46 Generate findings report
37:33 Analysis procedure overview
37:55 Autopsy: Images/Videos tool
38:17 Conclusions

Learn how to do forensic keyword searching, entropy testing, YARA basics, file carving, and more with Autopsy digital forensic software.

Links:

Related Books:

#Autopsy #forensics #investigation #case #dfir
010001000100011001010011011000110110100101100101011011100110001101100101
Get more Digital Forensic Science

010100110111010101100010011100110110001101110010011010010110001001100101

Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License. Please link back to the original video. If you want to use this video for commercial purposes, please contact us first. We would love to see what you are doing.
  1. DFIRScience
  2. autopsy 4.19
  3. autopsy modules
  4. autopsy course
  5. autopsy forensic software
  6. how to use autopsy forensics
Рекомендации по теме
Starting a New 0:38:59

Starting a New Digital Forensic Investigation Case in Autopsy 4.19+

Starting a New 0:30:25

Starting a New Digital Forensic Investigation Case in Autopsy 4.2

Become a Cyber 0:16:04

Become a Cyber Forensic Investigator (Beginners DFIR Roadmap 2024)

Digital Forensics Analyst 0:13:44

Digital Forensics Analyst Job? | Salary, Certifications, Skills & Tools, Bootcamp, Education, et...

Digital Forensics Full 0:11:49

Digital Forensics Full Roadmap: From 0 to Cyber Forensic Investigator (Beginners Guide).

How to set 0:08:55

How to set up a digital forensics lab | Cyber Work Hacks

My life as 0:12:37

My life as Cyber Forensic Investigator and what Certifications you should

Inside the FBI's 0:02:07

Inside the FBI's digital forensics laboratory

Class 3: Memory 0:38:27

Class 3: Memory Forensics

Top required skill 0:00:16

Top required skill in digital forensics and infosec

Digital Forensics | 0:14:56

Digital Forensics | Davin Teo | TEDxHongKongSalon

Overview of Digital 0:05:25

Overview of Digital Forensics

How to Identify 0:07:03

How to Identify Digital Evidence | Introduction to Digital Forensics

Digital Forensics Analysts 0:01:47

Digital Forensics Analysts Career Video

Autopsy - Forensic 0:23:17

Autopsy - Forensic Acquisition Tool | Digital Forensics Investigation | Autopsy Tutorial

Starting in Digital 0:18:58

Starting in Digital Forensics: Conferences and Presentations

How to learn 0:03:36

How to learn Digital Forensics by yourself

Cyber Forensic Lab| 0:00:19

Cyber Forensic Lab| Mobile Forensic| Computer Forensic | Digital Forensic Training & Internships

How to become 0:04:55

How to become a Digital Forensics Investigator | EC-Council

Digital Forensic recruitment 0:02:51

Digital Forensic recruitment

Digital Forensics Masterclass 0:00:22

Digital Forensics Masterclass | Forensic Science 2023 DFMC+™ - Udemy Free Course

Digital Forensic Process 0:21:22

Digital Forensic Process

Episode 74: How 0:02:59

Episode 74: How to Get Started in Digital Forensics

Everything Digital Forensics 1:10:30

Everything Digital Forensics - From Certifications to Lab Setup

Комментарии
Автор

Seriously the best introductory/basic-workflow Autopsy video I've watched. I absolutely love that you give additional detail about the modules, and that you explained your workflow.

j.s.
Автор

Exactly what I was looking for to complete an assignment. Thank you!

cybercatlabs
Автор

after trying around 5-11 videos this is the only one that i found working

thanhphuongle
Автор

The link in your description for sample data doesn't contain the hash file that is in the video. it only has an image .dd file. How do I proceed ?

filzaakhlaq
Автор

thank you master for the basic introduction of using autospy in digital forensic. i have watch the video is very interesting. my gratitude and wish you all the best

butruscyprianooturoonyong
Автор

Very thorough explanation! Your videos have been pointed to by one of my college professors.

margalocaris
Автор

Thanks for the tutorial! I'm a criminal law student so Digital Forensic Investigation is really interesting. I've always wondered how gathering digital evidence works. I learned a lot from your tutorial!

TheMiejoe
Автор

Wow! This is really great!!! Information is loved!!!!

EphraimStolfus
Автор

This is better information than my textbook. Thank you

Boonethedude
Автор

Want to thank you for the time you put into your content. You are pretty much the only forensics Youtube channel that consistently produces great content. Well done my friend, and thank you.

CT-zqkz
Автор

Very interesting material for someone starting in the IR team. Great video!

DEDEPLDEDE
Автор

awesome tutorial for learning the Autopsy tool! Can you also share some good sources for getting forensic images for data recovery challenges?

AniketAmdekar
Автор

I thoroughly enjoyed it! Thanks for the great tutorial.

malemmutum
Автор

FTK and Autopsy are the one's I always use. Great vid.

NightShooter
Автор

Thank you for this well made tutorial!

Tomas-Montenovi
Автор

Nice video, well done, thanks for sharing it with us :)

RixtronixLAB
Автор

sir, I just wanted to know how did you downloaded the data artifacts module. Because when I do, my all files are extracted except data artifacts module

piyushsingh
Автор

This is amazing video with great works very well

michalsedlacek
Автор

Thank you so much for this! Do you happen to have a video or guide on how to upload an iPhone or Apple device into FTK imager to create a readable format for autopsy?

kcm
Автор

TNice tutorials was very helpful thankyou.

RahulYadav-lusc