Digital Forensics

Question 1

Hardware

Answer 1

physical and tangible components of the computer

Question 2

Software

Answer 2

set of instructions compiled into a program that performs a particular task

Question 3

Computer case/Chassis

Answer 3

physical box holding the fixed internal computer components in place

Question 4

Power Supply

Answer 4

converts the power it gets from the wall outlet to a useable format for the computer and its components

Question 5

Motherboard

Answer 5

main circuit board contained within a computer

Question 6

System Bus

Answer 6

vast complex network of wires that serves to carry data from one hardware device to another`

Question 7

CPU

Answer 7

brains of the computer

Question 8

RAM

Answer 8

not permanent; its contents undergo constant change and are forever lost once power is taken away from the computer

Question 9

ROM

Answer 9

stores data long term

Question 10

Hard Disk Drive

Answer 10

primary location of data storage within the computer

Question 11

Sectors are typically _____ bytes in size

Answer 11

512

Question 12

Clusters

Answer 12

groups of sectors

Question 13

Tracks

Answer 13

concentric circles that are defined around the platter, made up of clusters

Question 14

Cylinders

Answer 14

groups of tracks that reside directly above and below each other

Question 15

Data Product Files

Answer 15

basic software programs and files found on most computers

Question 16

Orphaned File

Answer 16

a file that may be recoverable from a previous file version

Question 17

Unsaved File

Answer 17

a document can be typed and not saved, yet may still be recoverable because a temporary file was created

Question 18

Print Spool File

Answer 18

a process delays the information being sent to a printer during a print job so that the active application can continue working during the printing process

Question 19

Swap File Data

Answer 19

applications may be swapped out of RAM and written to the swap file on the hard drive disk

Question 20

Hex editor

Answer 20

application that allows data to read on the binary level without having to use the operating system’s file system table

Question 21

Slack Space

Answer 21

empty space on the hard drive

Question 22

Unallocated space

Answer 22

space not technically used on a hard drive

Question 23

IP Address

Answer 23

a digital address assigned to a user by their internet service provider

Question 24

Cookies

Answer 24

website information, placed on the hard drive to track information about a user’s activity, specific to a website

Question 25

Internet Cache

Answer 25

used to store portions of web-pages on the hard drive to make revisiting them quicker, more effective, and to conserve bandwidth

Question 26

Fraud

Answer 26

Identity theft, auction, bank, phishing, spoofing, money laundering, hacking

Question 27

Terrorism

Answer 27

Attacks on networks as a social and/or political objective, fear propaganda, hacking

Question 28

Imaging

Answer 28

data acquisition process

Question 29

Triangulation

Answer 29

used to locate a mobile device based on the signal from multiple cellular towers

Question 30

Peer-to-peer

Answer 30

method to verify that a digital device has been completely and correctly collected

Question 31

A unique feature of digital evidence is that it can be _______

Answer 31

perfectly copied

Question 32

How a file is stored depends greatly on the ____ in use

Answer 32

OS

Question 33

The digital device tracking method based on satellites is known as ______

Answer 33

GPS

Question 34

Cell phones should be packaged in a ______________ in order to prevent them sending or receiving wireless signals.

Answer 34

faraday cage

Question 35

A wife believes that her husband has been carrying on an illicit affair, and deleting any text messages he receives from his side chick. What method should an investigator use to recover these messages?

Answer 35

Targeted

Question 36

For data stored as flash memory, what represents the 1s and 0s of the binary code?

Answer 36

Charge conducted by a floating gate

Question 37

A few years ago, Target suffered a huge data breach when credit & debit card information was captured in real time as people swiped their cards. This suggest that which type of memory was targeted for collection by the criminals?

Answer 37

RAM

Question 38

You accidentally delete your lovingly crafted 10 page term paper from a USB drive and plugged it into a different computer. What is your best bet for recovery?

Answer 38

Restore the file directory system

Question 39

What information is captured by a SIM card?

Answer 39

The account information for a network subscriber

Question 40

Magnetic Storage

Answer 40

Tiny magnet filings coat a platter
An electromagnetic head orients the filings up or down

Question 41

Optical memory depends

Answer 41

On size and spacing

Question 42

Flash memory

Answer 42

No moving parts
Data is not stored in a physically accessible way