Digital Forensics 1

Question 1

Information that helps explain other evidence. And example is a chart that explains a technical concept to the judge and jury.

Answer 1

Demonstrative Evidence

Question 2

The process of acquiring and analyzing information stored on physical storage media, such as computer hard drives or smartphones.

Answer 2

Disk Forensics

Question 3

The resulting signal, stream, or data file

Answer 3

Sometimes called the package, stego file, or covert message

Question 4

The proportion of bytes, samples, or other signal elements modified to encode the payload. Is typically expressed as a number between 0 and 1.

Answer 4

Encoding Density

Question 5

How the instructions in a computer’s BIOS are stored?

Answer 5

EEPROM

Question 6

When a suspect prevents data from being written to disk by storing it in memory using memory-resident rootkits, it is called __________.

Answer 6

Data Contraception

Question 7

This is the space that remains on a hard drive if the partitions do not use all the available space.

Answer 7

Volume Slack

Question 8

Basis Technology invented an open file standard format with three variations, all supported by Sleuth Kit and Autopsy. The name of this file format is what?

Answer 8

The Advanced Forensic Format

Question 9

Negated AND (NAND) gate-based flash memory, which retains memory even without power.

Answer 9

SSD’s use which type of flash memory?

Question 10

The standard for e-mail format, including headers, is ???

Answer 10

RFC 2822