Live forensics: diagnosing your system without killing it first
Communications of the ACM - Next-generation cyber forensics
Improving evidence acquisition from live network sources
Digital Investigation: The International Journal of Digital Forensics & Incident Response
Tool review - remote forensic preservation and examination tools
Digital Investigation: The International Journal of Digital Forensics & Incident Response
Risk sensitive digital evidence collection
Digital Investigation: The International Journal of Digital Forensics & Incident Response
Generalizing sources of live network evidence
Digital Investigation: The International Journal of Digital Forensics & Incident Response
| Hi-index | 0.00 |
Performing live forensics investigation becomes a trend in digital forensics. Different vendors and software developer implement their own investigation procedures. By applying FORZA framework -- a digital forensics investigation framework, investigation requirement could be translated and formulated into criteria in applying appropriate forensics investigation requirement. Through this model, only necessary searching would be applied to live investigation process instead of simply passing all investigation process to live investigation unintentionally. In this paper, the FORZA framework that applied to live forensics investigation will be presented and illustrated using the investigation of the first BT illegal movie upload investigation.