These files were modified to mask them from others in the following ways: The restored and repaired floppy image contains 3 files. For each file, what processes were taken by the suspect to mask them from others? What (if any) other high schools besides Smith Hill does Joe Jacobs frequent?Īfter successfully opening the encrypted scheduled visits spreadsheet it is apparent that Joe Jacobs also frequents the following high schools:Ĥ. #Outguess org stegdetect tar zip file#The cover page file contains the password to the encrypted zip file (scheduled visits.zip), which can be found at the end of the file (offset 0x3d20) as "pw=goodtimes".ģ. What crucial data is available within the coverpage.jpg file and why is this data crucial? Who is Joe Jacob's supplier of marijuana and what is the address listed for the supplier?īy examining Jimmy Jungle.doc, which is apparently a letter from Joe to his supplier, we determined that the following is the name and address of Joe Jacob's supplier:Ģ. We end the writ with a listing of the tools and reference materials we used to conduct our analysis.ġ. We then discuss in detail our analysis and conclusions It is important to note that we do not just discuss the correct approach but our entire approach, incorrect paths and all. We begin with brief answers to the six questions that were asked. The following is a detailed writ covering our methodologies and conclusions. You may want to read the police report for the appropriate background information. Pedram month's project involved the forensic analysis of a floppy that was seized by the police from a suspected drug dealer (made up scenario). Redhive Laboratories: Project Honeynet SoTM 24 Project Honeynet Scan of the Month 24
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |