| 英文摘要 |
Social networking trends are changing people's lifestyles. Therefore, the modes of cybercrime have also changed in accordance with the users' activities. In order to identify crimes, it is necessary to use appropriate forensic techniques to retrieve relevant traces and evidence. In this paper, we focus on the Android mobile phone forensics and Windows 10 computer forensics for the Dcard application. We strive to find digital evidence from users in their operation of Android mobile phones and Windows 10 operating systems. The tests consisted of installing Dcard social networking application, conducting common user activities through this application, acquiring image files of hard disks and physical memory, and performing manual forensic analysis on each acquired image file. The forensic analysis was aimed at determining whether activities conducted through Dcard application was stored on the device's internal memory and hard disc. We adopted a variety of tools to create and analyse image files from the mobile phone and computer system. This study, which features of the Dcard application, shows that the application has evidentiary traces allowing for suspect data to be reconstructed or partially reconstructed, and whether device forensics permits the reconstruction of that activity. It will be helpful to forensic analysts and practitioners because it assists them in mapping and finding digital evidence of Dcard applications. |
本站僅提供期刊文獻檢索。
