FBIM Transactions

Increased use of computers and devices and equipment based on them has made significant improvements in the functioning of companies and institutions, but also individual users. At the same time, risks have arisen due to their improper use or misuse. The loss or theft of data can occur in a variety of ways, from a user's error to an individual or mass attacks of malicious attackers. Some of the problems can be solved using the operating system's or application software's tools, but for specific situations, when the misdoing has already been done, it is necessary to use special, dedicated forensic tools. In case of need for judicial expertise, the task of forensic experts becomes even more complex, as with the detection of causes, the IT forensic expert must provide valid evidence that the act was done and (if possible) who made it, but also left the artifact in an unchanged state that other forensic research could be carried out either in connection with other reasons, or by another institution (or another forensic expert). Therefore, and for other reasons, it is necessary to use specialized forensic tools. In this paper, after the introductory part, which examines forensics and anti-forensics, short history and contemporary legislation, as well as the challenges associated with forensics and tools, the computer forensic tools are discussed in greater detail. The accent is placed on free forensic tools. The conclusions of the paper summarize views on forensics and forensic tools and point out the directions for future development, especially in connection with the massive use of the Internet of Things.

Breach Level Index. (2018, avgust 17). Data Breach Statistics. Preuzeto sa Breach level index: https://breachlevelindex.com/

Cole, B. (2012, juni). Computer Fraud and Abuse Act (CFAA). Preuzeto sa TechTarget: https://searchcompliance.techtarget.com/definition/The-Computer-Fraud-and-Abuse-Act-CFAA

Computer Misuse Act. (1990). Preuzeto sa legislation.gov.uk: https://www.legislation.gov.uk/ukpga/1990/18/contents

Garfinkel, S. L. (2013). Digital media triage with bulk data analysis and bulk_extractor. Computers & Security(32), 56-72.

ISO/IEC 17025. (2005). General requirements for the competence of testing and calibration laboratories. ISO.

n.d. (2018, mart). Forensic Software: Everything You Need to Know About Computer Forensics. Preuzeto sa Disk Drill: https://www.cleverfiles.com/howto/computer-forensic.html

Norman, J. (1978, maj 30). Probably the First U. S. Legislation against Computer Crimes (1978). Preuzeto sa HistoryofInformation: http://www.historyofinformation.com/expanded.php?id=3888

NSRS. (2005). Zakon o organizaciji i nadležnosti državnih organa za borbu protiv visokotehnološkog kriminala. Sl. glasnik RS(61).

Shankdhar, P. (2018, mart 26). 22 Popular Computer Forensics Tools [Updated For 2018]. Preuzeto sa Infosec Institute: https://resources.infosecinstitute.com/computer-forensics-tools/

Smith, S. (2015, maj 12). Cybercrime will Cost Businesses Over $2 Trillion by 2019. Preuzeto sa Juniper research: https://www.juniperresearch.com/press/press-releases/cybercrime-cost-businesses-over-2trillion

Stephenson, P. (2017, oktobar 02). It's forensic tools time again. Preuzeto sa SC Magazine: https://www.scmagazine.com/its-forensic-tools-time-again/article/696487/

SWGDE. (2004). SWGDE Best Practices for Computer Forensics. Washington DC: SWGDE.

Techopedia. (2016, Sep 14). Digital Forensics. Preuzeto sa techopedia: https://www.techopedia.com/definition/27805/digital-forensics