Selective File Dumper

Bassetti, Nanni; Frati, Denis

doi:10.1007/978-1-4419-5803-7_8

Nanni Bassetti³ &
Denis Frati⁴

1369 Accesses

Abstract

During a computer forensics investigation we faced a problem how to get all the interesting files we need fast. We work, mainly, using the Open Source software products and Linux OS, and we consider the Sleuthkit and the Foremost two very useful tools, but for reaching our target they were too complicated and time consuming to use. For this reason we developed the Selective File Dumper, a Linux Bash script which makes it possible to extract all the referenced, deleted and unallocated files and finally to perform a keyword search, in a simple way.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 129.00; Price excludes VAT (USA)

Softcover Book: USD 169.99; Price excludes VAT (USA)

Hardcover Book: USD 169.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

Carrier B (2005) File System Forensics Analysis. Addison Wesley Professional
Google Scholar
Ghirardini A, Faggioli G (2007) Computer Forensics. Apogeo
Google Scholar
Newman RC (2007) Computer Forensics. Auerbach Pubblications
Google Scholar
Mandia K, Prosise C (2002) Hacker Pronto Intervento. Apogeo
Google Scholar
Nolan R, O’Sullivan C, Branson J, Waits C (2005) First Responders Guide to Computer Forensics. CERT Training and Education
Google Scholar
Solomon MG, Barrett D, Broom N (2005) Computer Forensics JumpStart. Sybex
Google Scholar
Autopsy and Sleuthkit. The Digital Forensics Toolkit. The Tracker Dog’s Guide www.linux-magazine.com/issue/36/Autopsy.pdf
Linux Kubuntu/Ubuntu - http://www.kubuntu.org http://www.ubuntu.com
Sleuthkit - http://www.sleuthkit.org
Foremost - http://foremost.sourceforge.net
Sha256deep - http://md5deep.sourceforge.net/
Bash Guide - http://tldp.org/LDP/abs/html/
Zenity - http://freshmeat.net/projects/zenity
Sourceforge - http://sourceforge.net
Wikipedia - http://en.wikipedia.org/wiki/Open_source
Bash Cookbook - Carl Albing, JP Vossen, Cameron Newham - O’Reilly - 2007
Google Scholar
Producing Open Source Software: How to Run a Successful Free Software Project -Karl Fogel - O’Reilly - Paperback 2005
Google Scholar

Download references

Author information

Authors and Affiliations

Via Della Costituente, 37, 70125, Bari, Italy
Nanni Bassetti
Via A. Testa, 16, 10010, Banchette, TO, Italy
Denis Frati

Authors

Nanni Bassetti
View author publications
You can also search for this author in PubMed Google Scholar
Denis Frati
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Nanni Bassetti .

Editor information

Editors and Affiliations

Computer Forensis Consulting, Great Western Highway 324, Warrimoo, 2774, Australia
Ewa Huebner
Dipto. Elettronica e Informazione (DEI), Politecnico di Milano, Via Ponzio 34/5, Milano, 20133, Italy
Stefano Zanero

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Bassetti, N., Frati, D. (2010). Selective File Dumper. In: Huebner, E., Zanero, S. (eds) Open Source Software for Digital Forensics. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5803-7_8

Download citation

DOI: https://doi.org/10.1007/978-1-4419-5803-7_8
Published: 30 December 2009
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4419-5802-0
Online ISBN: 978-1-4419-5803-7
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics