From the course: Computer Hacking Forensics Investigator (CHFI) Cert Prep
Join today to access over 25,200 courses taught by industry experts.
Data acquisition: Part 2
From the course: Computer Hacking Forensics Investigator (CHFI) Cert Prep
Data acquisition: Part 2
Hey, everyone, welcome back to the course. So in the last video, we talked about different types of data acquisition formats. We also talked about live versus static acquisition. So in this video, we're going to talk about some data collection. So different forms of data collection we can do. So disk-to-image, probably the most popular one, disk-to-disk, logical, and sparse. We'll talk about each one of those. So Disk-to-image. That's basically our bit-to-bit replication or bit-by-bit replication. So basically, we're getting all the information. Right. So every single bit, we're replicating that. Very time-consuming, also takes a lot of memory. So just keep that in mind based on what you're trying to acquire, this may not be the best format for you. Right. And then some different tools that can do it EnCase the Sleuth kit, X-Way Forensics, ProDiscover, etcetera, etcetera. Again, there's a ton of tools that may be mentioned on the CHFI exam if you decide to take it. So my best…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.