java in forensic co...
 
Notifications
Clear all

java in forensic computing

7 Posts
6 Users
0 Likes
1,104 Views
(@soso-mohammed)
Posts: 1
New Member
Topic starter
 

Hi every body,

i am tried to evaluate Java programming language as language to develop/build digital forensic tools, i need to know the main Java libraries that can be used to implement digital forensic tool functions ( disk imaging, verification (e.g. hash functions), data carving …etc.) could you please guide me for those libraries .

thanks

 
Posted : 27/01/2016 2:14 am
jhup
 jhup
(@jhup)
Posts: 1442
Noble Member
 

There are several products in digital forensics that use Java in some fashion.

AccessData PRTK comes to mind.

 
Posted : 27/01/2016 7:49 am
keydet89
(@keydet89)
Posts: 3568
Famed Member
 

Here, let me go ahead and Google that for you…

https://docs.oracle.com/javase/tutorial/essential/io/bytestreams.html

http//docs.guava-libraries.googlecode.com/git/javadoc/com/google/common/hash/HashFunction.html

 
Posted : 27/01/2016 5:29 pm
MDCR
 MDCR
(@mdcr)
Posts: 376
Reputable Member
 

Link
jwmi query windows wmi from java

There is an important lesson in the link just above. Sure, it works, but look at HOW he had to do it to make it work (he basically wrote a VBScript wrapper).

I wouldn't use Java for anything except browser based applications that have to be cross platform and not dig deep into the system. In .NET, i can query WMI in just a few lines of code.

 
Posted : 28/01/2016 3:45 pm
Chris_Ed
(@chris_ed)
Posts: 314
Reputable Member
 

I believe you can create Autopsy modules in Java, too.

 
Posted : 28/01/2016 6:07 pm
keydet89
(@keydet89)
Posts: 3568
Famed Member
 

I wouldn't use Java for anything except browser based applications that have to be cross platform and not dig deep into the system. In .NET, i can query WMI in just a few lines of code.

I'm a little unclear as to why someone would consider WMI to be "used to implement digital forensic tool functions ( disk imaging, verification (e.g. hash functions), data carving …etc.) ".

WMI is great for live system access, but I'm not sure why someone would consider it for low-level disk/binary-level access.

 
Posted : 28/01/2016 8:02 pm
PaulSanderson
(@paulsanderson)
Posts: 651
Honorable Member
 

This might be a reason not to use java

http//www.bbc.co.uk/news/technology-35427685

 
Posted : 28/01/2016 8:29 pm
Share: