Digital Forensics Lab: Free hands-on digital forensics labs for students and faculty

Digital Forensics Lab & Shared Cyber Forensic Intelligence Repository

Features of Repository

• Interactive Digital Forensics Labs: Tailored for students and faculty engagement
• Linux-Centric Lab Environment: Utilizes Kali Linux exclusively for all labs
• Visual Learning Support: Each lab includes PowerPoint presentations, associated files, and instructional screenshots
• Holistic Coverage: Encompasses a wide array of topics within the field of digital forensics
• Open Source Tools: All tools utilized are freely available and open-source
• Ongoing Updates: Supported by grants from the DOJ, DHS, and NSF, the team is committed to regularly updating the repository
• Forensic Intelligence Integration: Two structured forensic intelligence datasets in JSON format derived from real case studies

Table of Contents

• Basic Computer Skills for Digital Forensics

  • Number Systems (add Python code for data conversion 1/2023)
  • PC Introduction
  • Windows Command Line Tutorial
  • Linux Command Line Tutorial
  • Advanced Linux Command Line Tutorial

• Basic Networking Skills for Digital Forensics (added 3/17/2023. Use Paython Scapy and netfilterqueue libraries.)

  • HTTP Analysis using Wireshark (text)
  • HTTP Analysis using Wireshark (image)
  • SYN Flood Attack Investigation using tshark
  • SMTP Forensics
  • ARP Poisoning Forensics
  • Firewall
  • DNS Introduction
  • DNS Spoofing Forensics
  • WEP40 Wireless Aircrack

• Computer and Digital Forensics (updated on Oct. 2021)

  • Introduction to Digital Forensics
  • Sleuth Kit Tutorial
  • USB Image Acquisition
  • Evidence Search – A Pattern Match Game (updated on May 2022)
  • Evidence Search – File Metadata
  • Data Carving
  • Steganography
  • Forensic Report Template

• Computer Forensics Case Study

  • Investigating NIST Data Leakage (Windows XP)
  • Investigating P2P Data Leakage (Windows 10)
  • Investigating Illegal Possession of Images (“Networking forensics”)
  • Investigating Email Harassment (updated on Feb 2023)
  • Investigating Illegal File Transferring (Memory Forensics)
  • Investigating Hacking Case
  • Investigating Morris Worm Attack (updated on Jan 2023, POSTER)

• Mobile/IoT Forensics Case Study

  • Investigating Eufy Doorbell (added on 10/15/2024)
  • Investigating Echo Show 8 (added on 12/25/2023)
  • Investigating Android 10 (added on 10/24/2021)
  • Investigating iPhone iOS 13 (updated on 6/18/2022)
  • Investigating Drone (add on 12/07/2021)

• Forensic Intelligence Repository

  • Email forensics
  • Illegal Possession of Images

• AI for Forensics

  • Tutorial session on CKIM2024. You can access hands-on lab
  • Identifying IP Addresses using a Fine-tuned AI Model
  • Profiling Suspects Leveraging LLMs (Browser History) colab
  • Political Insight Analysis Leveraging LLMs (Email)

Install

Source: https://github.com/frankwxu/