Review of Cyber Forensic Tools in International Journal of Engineering Trends and Technology

Questions and Answers

What is one of the key purposes of applying digital forensics in response to cyber attacks?

• To encourage more cyber attacks
• To prevent cyber attacks from happening
• To increase the severity of cyber attacks
• To analyze digital media and networks for investigation (correct)

In Cyber Forensic Investigation, what is the primary aim of the Capture & Analysis of digital data?

• To hide evidence of cyber crimes
• To ignore digital evidence
• To promote internet-related theft
• To establish digital data as evidence in court (correct)

What motivated enterprises to respond to cyber attacks with predetermined actions?

• The intention to support cyber attackers
• The increasing number and severity of cyber attacks (correct)
• The desire to keep the severity of attacks a secret
• The need to remain vulnerable to attacks

What is NOT a part of the process involved in Cyber Forensic Investigation?

Recovery and investigation on analog media (A)

Why is Cyber Forensic Investigation crucial when responding to cyber attacks?

To recover and investigate material on digital media and networks (C)

What is the main purpose of Cyber Forensic Investigation when dealing with potential internet-related theft?

To prove or disprove whether the internet-related theft has been committed (C)

What type of data can be revealed in a digital forensic investigation?

All of the above (D)

What is the main focus of network forensics?

Monitoring and analyzing LAN/WAN/internet traffic (C)

What is the purpose of the Digital Forensics Framework?

To provide a platform for digital forensics (D)

What is the purpose of the Open Computer Forensics Architecture (OCFA)?

All of the above (D)

What is the purpose of CAINE (Computer Aided Investigative Environment)?

All of the above (D)

Which of the following is not mentioned as a capability of the Digital Forensics Framework?

Analyzing network traffic at the packet level (D)

What was the primary role of computers in the past?

Storing and processing large volumes of data (B)

What is the key factor for selecting cyber forensic tools?

The budget and available experts on the team (D)

What is the primary purpose of using cyber forensic tools?

To provide legally acceptable evidence in computer crime cases (C)

What is the difference between digital forensics and computer forensics?

Computer forensics is a branch of digital forensics (C)

What is the primary role of cyber forensic tools in crime investigation?

To probe the digital evidence and support the case (C)

What is the main purpose of the cyber forensic framework?

To standardize the process of digital forensics (A)

What is SIFT?

A multi-purpose forensic running device with necessary digital forensic tools (D)

Which of the following is a popular multi-purpose forensic platform?

EnCase (D)

What is the purpose of Registry Recon?

To extract registry information and rebuild the registry representation (C)

Which tool is described as a UNIX and Windows-based tool for forensic analysis?

The Sleuth Kit (B)

What is the purpose of Libforensics?

To develop digital forensics applications (B)

Which tool is said to be free of charge and incorporate free open-source forensic tools?

SIFT (D)

What is the title of the paper written by Hussain, Chakravarthy, and Sarma in 2013?

Enhancing ATM Security with Biometric Smart Card (D)

In which year was the paper 'Digital Forensic Trends & Future' published?

2013 (B)

Which paper discusses a technique to prevent false fire alarms and fatal casualties?

Forestalling Fire Disasters with Electronic Noses (D)

What is the focus of the paper by Pollitt in 2010?

History of Digital Forensics (B)

Which journal featured the article 'Security Enhancement of ATM System with Fingerprint and DNA Data'?

The International Journal of Advanced Research in Computer Science and Software Engineering (B)

Which paper highlights a technique to upgrade security in ATM transactions?

Palm Vein Biometric Technology: An Approach to Upgrade Security in ATM Transactions (D)

What is the main purpose of computer forensics according to the text?

To capture, process, and investigate data from computers using a methodology that ensures evidence is acceptable in court. (D)

Why is computer forensics important according to the text?

All of the above. (D)

What are the three categories of data that computer forensics focuses on according to the text?

Active data, latent data, and archival data. (B)

What is the main purpose of collecting forensic data according to the text?

To detect crime and identify criminals. (D)

What is the key issue related to collecting digital evidence according to the text?

All of the above. (D)

How does the text define the relationship between computers and crime?

Computers are used as tools for committing crimes. (D)

What is the image hash of the Dell Latitude CPi, E01 computer?

AEE4FCD9301C03B3B054623CA261959A (D)

What operating system was used on the Dell Latitude CPi, E01 computer?

Microsoft Windows XP (B)

When was the Dell Latitude CPi, E01 computer installed?

2004-08-19 22:48:27 (C)

Who is the registered owner of the Dell Latitude CPi, E01 computer?

Greg Schardt (B)

What is the computer account name for the Dell Latitude CPi, E01 computer?

N-1A9ODN6ZXK4LQ (B)

When was the last recorded shutdown date and time for the Dell Latitude CPi, E01 computer?

2004/08/27-10:46:27 (D)

What is the first step in a forensic investigation when tracking cyber criminals?

Computer crime is suspected (C)

Which of the following is NOT one of the rules for a forensic investigator?

Preserve the integrity of data at all costs (A)

Which of the following is an example of an open-source digital forensics tool mentioned in the text?

Sleuth Kit libraries (A)

What is the purpose of generating an MD5 checksum during a forensic investigation?

To verify the integrity of the evidence images (B)

Which step in the forensic investigation process involves attending court and testifying as an expert witness?

Step 14: If required, attend the court and testify as expert witness (D)

What is the purpose of preparing a chain of custody during a forensic investigation?

To document the handling and transfer of evidence (C)

What was the suspected purpose of the abandoned Dell computer found by the authorities?

For hacking purposes (D)

What nickname did Schardt use when going online?

Mr.Evil (A)

How did Schardt allegedly attempt to obtain credit card numbers, usernames, and passwords?

By intercepting internet traffic from wireless hotspots (A)

What was one of the tasks involved in the computer forensics investigation of Schardt's case?

Determining the MAC and last allocated IP address of the computer (B)

What information was sought regarding the computer's owner?

Their email address and hacker handle (A)

What was one of the sources investigators planned to examine for relevant information?

The computer's Recycle Bin (C)

What is the purpose of Look@LAN tool in the context of the text?

Monitoring network traffic (A)

Which tool is specifically designed for password recovery in Microsoft Windows?

Cain and Abel (B)

What is the primary function of NetStumbler?

Wireless LAN detection (D)

Which tool is an Internet Relay Chat client for Windows?

mIRC (C)

What is the main feature of Cain and Abel tool according to the text?

Password recovery (A)

Which tool facilitates the detection of Wireless LANs using different WLAN standards?

NetStumbler (B)

What kind of data can the ultramodern version of the tool mentioned in the text recover from smart phones?

Call statistics, photos, SMS, and text messages (A)

What is the primary purpose of U.HELIX3 in digital forensics?

To provide a virtual forensic environment for incident response (C)

What type of data can the device discussed in the text acquire during a forensic analysis?

Physical memory contents and chat logs (A)

What happened to the Helix3 project after the release of the Free version in 2009R1?

It was taken over by a commercial vendor (A)

Which of the following is NOT one of the types of data that the device mentioned in the text can acquire during forensic analysis?

Sports scores and news updates (C)

What is the main function of the software component in the device discussed in the text?

To generate reports based on analyzed data (C)

What is the main focus of database forensics according to the text?

Analyzing database contents, log files, and in-RAM data (B)

Which of the following is NOT a capability of computer forensics mentioned in the text?

Investigating call logs and text messages from mobile devices (A)

What is the main purpose of mobile device forensics according to the text?

Recovering digital evidence from mobile devices, including call logs, text messages, and communication stores (B)

Which of the following is NOT mentioned as a type of digital forensics framework in the text?

Financial Fraud Forensics (B)

What is the primary focus of database forensics according to the text?

Analyzing database contents, log files, and in-RAM data (A)

What is the main purpose of using cyber forensic tools according to the text?

Manipulating and analyzing data (B)

Which paper discusses a technique to prevent false fire alarms and fatal casualties?

Kanakam, Hussain, and Chakravarthy, 'Electronic noses: Forestalling fire disasters: A technique to prevent false fire alarms and fatal casualties' (B)

Which paper highlights a technique to upgrade security in ATM transactions?

Prasanthi et al., 'Palm Vein Biometric Technology: An Approach to Upgrade Security in ATM Transactions' (D)

Which paper discusses the focus of digital forensics trends and future?

Dezfoli et al., 'Digital Forensic Trends & Future' (C)

Which paper focuses on the history of digital forensics?

Pollitt, 'A History of Digital Forensics' (C)

Which paper discusses a comparative study of digital forensic tools?

Jain and Kalbande, 'A Comparative Study based Digital Forensic Tool: Complete Automated Tool' (B)

Which paper discusses a novel scheme for providing security using biometric smart cards?

Hussain, Chakravarthy, and Sarma, 'BSC: A Novel Scheme for Providing Security using Biometric Smart Card' (D)

What is the primary purpose of the UFED solution mentioned in the text?

To acquire, analyze, and act on mobile data efficiently (C)

What is the purpose of free computer forensic tools?

To assist law enforcement agencies in crime investigations (C)

What is the main reason cited for the increasing prominence of cyber forensics?

The increased use of digital data and mobile phones (C)

What is the primary goal of Cyber Forensic Investigation according to the text?

To recover and analyze digital evidence for legal proceedings (A)

Which of the following is NOT mentioned as a capability of the UFED solution?

Developing new mobile forensic techniques (A)

What is the primary role of cyber forensic tools according to the text?

To assist in the investigation of cybercrimes (A)

What is one of the key features of X-Ways Forensics according to the text?

It can perform bulk hash calculations and view binary data structures using templates. (C)

Which of the following file systems is NOT supported by X-Ways Forensics?

HFS+ (B)

What is one of the capabilities of X-Ways Forensics mentioned in the text?

It can automatically detect and recover deleted or lost hard disk partitions. (C)

Which of the following is NOT mentioned as a feature of X-Ways Forensics?

It can perform live forensics on running systems. (D)

What is one of the features of X-Ways Forensics related to data integrity?

It can verify the authenticity of data using cryptographic hashing. (A)

What is one of the capabilities of X-Ways Forensics mentioned in the text?

It has a built-in case management system for organizing evidence. (C)