Summary of Introduction to Computer Forensics - CSU2104 - Shoolini U

Summary of Introduction to Computer Forensics

1. What is Forensic Science?

2. What is Computer Forensics?

The science of collecting, preserving, analyzing, and presenting digital evidence from devices like computers, USBs, phones.

Used in:

3. Why It’s Needed?

4. Related Fields

5. Investigation Triad

3 Main Security Teams in Companies:

Team Purpose
1. Vulnerability Assessment Test systems for security holes
2. Network Intrusion Response Detect attacks and respond
3. Computer Investigations Analyze evidence after an incident

6. Challenges in Computer Forensics

7. Must-Know Terminologies

8. Methodology

✅ All aim for: Identify → Collect → Analyze → Present

9. Public vs Private Cases

Type Who Handles? Example
Public Govt. (Police, Court) Hacker stealing money from a bank
Private Companies/Organizations Employee misusing office email for harassment

10. Public Case Flow

  1. Complaint – Someone reports wrongdoing
  2. Investigation – Evidence is collected
  3. Prosecution – Case goes to court using your report

11. Forensic Investigator’s Role

You are the computer detective:

12. Setting Up a Forensic Workstation (Practical)

13. Professional Ethics

You must:

14. Top Certifications (Name 2-3 if asked)

15. Laws & Cybercrime

Quick Revision Flash Points: