Project ideas - Python forensics
I will be starting a final year university project soon and I was just wondering if any of you guys could help me.
I was wondering what projects I can create with a focus on python for computer forensics? Any programs that could potentially help the community, areas that I could explore that need more research. Any ideas are most welcome!
I have thought about creating a parser for deleted SQLite records, but would like opinions on more ideas.
Any ideas are appreciated. Have a great day )
Any ideas are appreciated.
You could create a parser in python to detect added or modified firewall rules in Windows. Each Windows OS comes with a predefined set of firewall rules. Some apps add new rules, but I would like to have a forensics tool to detect them, in an idea case with a timestamp of the change. AFAIK there is no such tool available to detect firewall rules created by malware, hackers or OS updates.
A tool that takes web browser history and extracts meta from website APIs.
For example, internetHX (of any browser) contains youtube video activity - extract meta based on video IDs.
Or, internetHX (of any browser) contains twitter activity, posts, retweets etc, extract data from Twitter API.
Crraigslist activity, ebay activity, general searches if you feel inclined.
And so forth - and then the output in a timeline format similar to other timeline tools out there.