Answered step by step
Verified Expert Solution
Question
1 Approved Answer
Write a 3 - 4 page paper ( 1 2 font size, double - spaced ) that is formatted according to APA standards. Prepare the
Write a page paper font size, doublespaced that is formatted according to APA standards. Prepare the paper for a reader who has little or no knowledge of the Windows Registry. Include definitions and explanations of terms that are likely to be unfamiliar. In your paper, address the following topics: A general overview of the Windows Registry and its five highlevel keys including: Descriptions of the ways that data is categorized within the registry Examples of how data is stored and what's necessary to decipher it At least one screenshot depicting highlevel keys Indepth research of the HKEYCurrentUser Hive: Detailed description of the hive User and machine data that is stored within the hive How data is stored How data can be viewed within the hive Specific examples of forensically relevant data How the Hive can be connected to an individual Three tools that can be used to analyze the Registry to include: Description of the tools, their developers, and availability Functions of the tools How tools report data Specific examples from the Windows registry where relevant and possible Screenshots to support explanations of tools Relevance to forensic examinations A plan for analyzing the registry of a computer from the scenario shown below: Forensic tools that you would use for the registry analysis and reason for selecting this tool Specific description of data to be analyzed ie file name and how you would collect that data One piece of data from each of the five highlevel keys that you would examine and how that data could assist with the investigation Scenario Police responded to a call, at River Parkway, in which Arnold Harding was found, deceased from an apparent gunshot wound, at his place of business, Harding Enterprises, a small printing company. The business was owned by the decedent and his wife, Lillian Harding. The company employs two fulltime employees and one parttime intern. Officer Greene was the first responder and did a cursory check of the scene. She saw two computers at the location, a Windows desktop machine, powered on and a laptop. The two machines are connected by a small network in the office. There is a cell phone, an iPhone powered on near the body of the decedent. The owner of the phone has not been identified. Detective Justin Martin was called to the scene. He will take charge of the investigation.
Write a page paper font size, doublespaced that is formatted according to APA standards. Prepare the paper for a reader who has little or no knowledge of the Windows Registry. Include definitions and explanations of terms that are likely to be unfamiliar.
In your paper, address the following topics:
A general overview of the Windows Registry and its five highlevel keys including:
Descriptions of the ways that data is categorized within the registry
Examples of how data is stored and what's necessary to decipher it
At least one screenshot depicting highlevel keys
Indepth research of the HKEYCurrentUser Hive:
Detailed description of the hive
User and machine data that is stored within the hive
How data is stored
How data can be viewed within the hive
Specific examples of forensically relevant data
How the Hive can be connected to an individual
Three tools that can be used to analyze the Registry to include:
Description of the tools, their developers, and availability
Functions of the tools
How tools report data
Specific examples from the Windows registry where relevant and possible
Screenshots to support explanations of tools
Relevance to forensic examinations
A plan for analyzing the registry of a computer from the scenario shown below:
Forensic tools that you would use for the registry analysis and reason for selecting this tool
Specific description of data to be analyzed ie file name and how you would collect that data
One piece of data from each of the five highlevel keys that you would examine and how that data could assist with the investigation
Scenario
Police responded to a call, at River Parkway, in which Arnold Harding was found, deceased from an apparent gunshot wound, at his place of business, Harding Enterprises, a small printing company. The business was owned by the decedent and his wife, Lillian Harding. The company employs two fulltime employees and one parttime intern. Officer Greene was the first responder and did a cursory check of the scene. She saw two computers at the location, a Windows desktop machine, powered on and a laptop. The two machines are connected by a small network in the office. There is a cell phone, an iPhone powered on near the body of the decedent. The owner of the phone has not been identified. Detective Justin Martin was called to the scene. He will take charge of the investigation.
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started