Samiksha Jaiswal (Editor)

Digital Forensics Framework

Updated on
Edit
Like
Comment
Share on FacebookTweet on TwitterShare on LinkedInShare on Reddit
Development status
  
Active

Operating system
  
Unix-like, Windows

Written in
  
C++, Python, PyQt4

Original author(s)
  
Frédéric Baguelin, Solal Jacob, Christophe Malinge, Jérémy Mounier

Developer(s)
  
Frédéric Baguelin, Solal Jacob, Jérémy Mounier

Stable release
  
1.3.0 / February 28, 2013; 3 years ago (2013-02-28)

Digital Forensics Framework (DFF) is computer forensics open-source software. It is used by professionals and non-experts to collect, preserve and reveal digital evidence without compromising systems and data.

Contents

User interfaces

Digital Forensics Framework offers a graphical user interface (GUI) developed in PyQt and a classical tree view. Features such as recursive view, tagging, live search and bookmarking are available. Its command line interface allows the user to remotely perform digital investigation. It comes with common shell functions such as completion, task management, globing and keyboard shortcuts. DFF can run batch scripts at startup to automate repetitive tasks. Advanced users and developers can use DFF directly from a Python interpreter to script their investigation.

Distribution methods

In addition to the source code package and binary installers for GNU/Linux and Windows, Digital Forensics Framework is available in operating system distributions as is typical in free and open-source software (FOSS), including Debian, Fedora and Ubuntu.

Other Digital Forensics Framework methods available are digital forensics oriented distribution and live cd:

  • DEFT Linux Live CD
  • Kali Linux

    • Publications

  • "Scriptez vos analyses forensiques avec Python et DFF" in the French magazine MISC
  • Several presentations about DFF in conferences: "Digital Forensics Framework" at ESGI Security Day "An introduction to digital forensics" at RMLL 2013

    • Published books that mention Digital Forensics Framework are:

  • Digital Forensics with Open Source Tools (Syngress, 2011)
  • Computer Forensik Hacks (O'Reilly, 2012)
  • Malwares - Identification, analyse et éradication (Epsilon, 2013)
  • Digital Forensics for Handheld Devices (CRC Press Inc, 2012)

    • In literature

  • Saving Rain: The First Novel in The Rain Trilogy

    • 'Erik gives her another appreciative once over before handing her a laptop and turning all business minded. "We've been using the Digital Forensics Framework, ran various algorithms, including k-means clustering, but we keep coming up empty.” “What about SSH, cryptographic algorithms?” Raina asks ...'

    White papers

  • Selective Imaging Revisited
  • A survey of main memory acquisition and analysis techniques for the windows operating system
  • Uforia : Universal forensic indexer and analyzer
  • Visualizing Indicators of Rootkit Infections in Memory Forensics
  • EM-DMKM Case Study Computer and Network Forensics
  • OV-chipcard DFF Extension
  • L'investigation numérique « libre »
  • Malware analysis method based on reverse technology (恶意 口序分析方法 耐)

    • Prize

    DFF was used to solve the 2010 Digital Forensic Research Workshop (DFRWS) challenge consisting of the reconstructing a physical dump of a NAND flash memory.

    References

    Digital Forensics Framework Wikipedia
    (Text) CC BY-SA