Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Cyber Forensics Cedarville > Additional Disk Analysis > Flashcards

Additional Disk Analysis Flashcards

1
Q

What are Autopsy Data Sources

A

Browse the filesystem

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are Autopsy File Views

A

Browse by extension

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are autopsy data artifacts

A

Various artifacts from analyzing the data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What command do you use to create a shadow copy

A

gwmi win32_shadowcopy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Binwalk

A

CLI tool that automatically extracts files from a volume.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What does the –dd flag do in binwalk?

A

Defines the file extensions to extract.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

When would you search by MIME type rather than extension?

A

Whenever the extension might be misidentified.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Cyber Forensics Cedarville (13 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions