Embed Size (px)
Citation preview
Pendahuluan
• What?• Rangkaian metodologi > teknik & prosedur > kumpul bukti > entitas/piranti digital > alat bukti sah
• Jenis: mobile forensic, internet forensic, video forensic, audio forensic, image forensic, dll
Digital Evidence Handling
• Identification• Quarantine• Analyze• Presentation
Identification
• Where are the digital evidences saved?• What is PC, notebook, harddisk, mobile phone, media/game player, etc?
Quarantine
• Evidence contamination• How?• Bitstream image? dd, enCase
Analyze
• Who?• What'd he do?• When?• Anti-Forensic?? How to extract?• Tools? Autopsy, FTK, EnCase, etc.
Presentation
• Report• Investigator > netral > knews
Training & Certification• Ec-Council: CEH (Certified Ethical Hacker), CHFI (Computer Hacking Forensic Investigator), ECSA, etc (https://www.eccouncil.org/Certification).
• EnCase: EnCE, EnCEP (very rare, https://www.guidancesoftware.com/training/Pages/certification-programs.aspx)
• Cellebrite: Cellebrite Mobile Forensic Fundamentals (CMFF), Cellebrite Certified Mobile Examiner (CCME), etc (https://www.cellebritelearningcenter.com/).
• Etc.
Any Question?
