Presentation is loading. Please wait.

Presentation is loading. Please wait.

Mike Mabey CSE 598 – Spring 2010Nishanth Kotha Venkata A Robot for Google Wave.

Published byGyles Francis Modified over 9 years ago

Similar presentations

Presentation on theme: "Mike Mabey CSE 598 – Spring 2010Nishanth Kotha Venkata A Robot for Google Wave."— Presentation transcript:

1 Mike Mabey CSE 598 – Spring 2010Nishanth Kotha Venkata A Robot for Google Wave

2 Agenda Motivation MBR/VBR/Timestamp Analysis Forensie Demo Applications Future work Q & A’s References 2

3 Motivation Google Wave – Collaboration tool Java vs. Python Course knowledge Open source extension 3

4 Master Boot Record (MBR) It is the first 512 bytes of the hard disk (sector 0 ). It performs the following activities: Scans the partition table for active partitions Find the starting sector of the active partition Loads a copy of the boot sector from the active partition into memory. Note: Although every partitioned hard disk contains an MBR, the master boot code is used only if the disk contains an active, primary partition. 4

5 Master Boot Record (MBR) 5 Byte RangeDescription 0 – 445Boot Code 446 – 461Partition Table Entry #1 461 – 477Partition Table Entry #1 478 - 493Partition Table Entry #1 494 - 509Partition Table Entry #1 510 – 511Signature value (0x55AA)

6 Volume Boot Record (VBR) It is the first sector of the individual partition on the device 6

7 MAC Attributes Date Analysis Time Analysis 7 4 3 2 1 0 8 7 6 5 15 14 13 12 11 10 9 Year (0 – 127)Month(1 – 12) Day(1 – 31) 1980 - 2107 4 3 2 1 010 9 8 7 6 5 15 14 13 12 11 Hour (0-23)Minute (0 – 59) Second (0 – 29)

8 Forensie Start using Forensie by: Having a Wave account Adding forensie@appspot.com as a contact Start waving Project home page: http://code.google.com/p/forensie/

9 Forensie: Structure 9

10 10

11 Demo 11

12 Applications Good experience for authors Provided hands-on knowledge of Wave Mobile and decentralized access to forensic analysis tool Paired with a hex editor, give a very quick and easy to use tool to discover basic hard drive structure Very easy to share analysis with another Wave user 12

13 Future Work Support attaching files to a blip for analysis Wave currently doesn’t allow robots to access files FAT analysis for simulation and training Support more file system types: NTFS HFS Image file reconstruction Try adding valid header & footer to corrupt file Make new file available for download/preview 13

14 Q & A’s 14

15 References 15

Download ppt "Mike Mabey CSE 598 – Spring 2010Nishanth Kotha Venkata A Robot for Google Wave."

Similar presentations

Chapter 12: File System Implementation

Chapter 12: File System Implementation
Computer Viruses Computer viruses are a type of Malware that can infect other computer operating systems. They can do harmful things to the host it infected.

Computer Viruses Computer viruses are a type of Malware that can infect other computer operating systems. They can do harmful things to the host it infected.
BSD Partitions COEN 152/252 Computer Forensics. BSD Partitions Some BSD systems use IA32 hardware  Designed to co-exists with MS partitions.  Use DOS.

BSD Partitions COEN 152/252 Computer Forensics. BSD Partitions Some BSD systems use IA32 hardware  Designed to co-exists with MS partitions.  Use DOS.
Computer System Basics 2 Hard Drive Storage & File Partitions Computer Forensics BACS 371.

Computer System Basics 2 Hard Drive Storage & File Partitions Computer Forensics BACS 371.
BACS 371 Computer Forensics

BACS 371 Computer Forensics
An Introduction to Computer Forensics James L. Antonakos Professor Computer Science Department.

An Introduction to Computer Forensics James L. Antonakos Professor Computer Science Department.
FILE SYSTEMS. File Names 1 to 255 characters in length  This includes the path You can use uppercase and lowercase (case-aware, but not case-sensitive)

FILE SYSTEMS. File Names 1 to 255 characters in length  This includes the path You can use uppercase and lowercase (case-aware, but not case-sensitive)
The FAT File System CSC 414. Objectives  Understand the structure and components of the FAT (12/16/32) File Systems  Understand what happens when a.

The FAT File System CSC 414. Objectives  Understand the structure and components of the FAT (12/16/32) File Systems  Understand what happens when a.
Digital Forensics Module 11 CS 996. 4/26/2004Module 112 Outline of Module #11 Overview of Windows file systems Overview of ProDiscover Overview of UNIX.

Digital Forensics Module 11 CS /26/2004Module 112 Outline of Module #11 Overview of Windows file systems Overview of ProDiscover Overview of UNIX.
Lecture 10: The FAT, VFAT, and NTFS Filesystems 6/17/2003 CSCE 590 Summer 2003.

Lecture 10: The FAT, VFAT, and NTFS Filesystems 6/17/2003 CSCE 590 Summer 2003.
COS/PSA 413 Day 15. Agenda Assignment 3 corrected –5 A’s, 4 B’s and 1 C Lab 5 corrected –4 A’s and 1 B Lab 6 corrected –A, 2 B’s, 1 C and 1 D Lab 7 write-up.

COS/PSA 413 Day 15. Agenda Assignment 3 corrected –5 A’s, 4 B’s and 1 C Lab 5 corrected –4 A’s and 1 B Lab 6 corrected –A, 2 B’s, 1 C and 1 D Lab 7 write-up.
Disk Volume Management CSS-1. Terms  Extent – any contiguous set of clusters  Partition – extent treated as a disk  Volume - partition formatted with.

Disk Volume Management CSS-1. Terms  Extent – any contiguous set of clusters  Partition – extent treated as a disk  Volume - partition formatted with.
Files & Partitions BACS 371 Computer Forensics. Data Hierarchy Computer Hard Disk Drive Partition File Physical File Logical File Cluster Sector Word.

Files & Partitions BACS 371 Computer Forensics. Data Hierarchy Computer Hard Disk Drive Partition File Physical File Logical File Cluster Sector Word.
FDISK Partitioning Hard Disks. History We bought our new hard disk drive –Right size for BIOS and OS –Right connections (PATA/SATA) We installed our new.

FDISK Partitioning Hard Disks. History We bought our new hard disk drive –Right size for BIOS and OS –Right connections (PATA/SATA) We installed our new.
MHDD Data Recovery & Forensics v15 - © 2009 MHDD 1 Hard Drive Kung Fu Magic MFT & File Based Imaging Data Recovery Forensics by Scott A. Moulton www.MyHardDriveDied.com.

MHDD Data Recovery & Forensics v15 - © 2009 MHDD 1 Hard Drive Kung Fu Magic MFT & File Based Imaging Data Recovery Forensics by Scott A. Moulton
1 Partitioning a Hard Drive ©Richard Goldman Revised January 8, 2001 Revised December 9, 2002.

1 Partitioning a Hard Drive ©Richard Goldman Revised January 8, 2001 Revised December 9, 2002.
IT GOVERNANCE AND CYBERCRIME Open Source Forensic Tools 19/04/10.

IT GOVERNANCE AND CYBERCRIME Open Source Forensic Tools 19/04/10.
Using Large Hard Drives in Linux Presented by Kevin McGregor Manitoba UNIX User Group March 12, 2013.

Using Large Hard Drives in Linux Presented by Kevin McGregor Manitoba UNIX User Group March 12, 2013.
FAT Structure. File Allocation Table (FAT) File Systems Used with all flavors of Windows Supported by all Windows and UNIX varieties Used in flash cards.

FAT Structure. File Allocation Table (FAT) File Systems Used with all flavors of Windows Supported by all Windows and UNIX varieties Used in flash cards.
Mastering Windows Network Forensics and Investigation Chapter 7: Windows File Systems.

Mastering Windows Network Forensics and Investigation Chapter 7: Windows File Systems.

Similar presentations

Ads by Google