You are a digital forensic analyst working on a high$-$profile case.

You have been given access to a variety of data sources, including dashboards, log data, and host operating system logs$.$ You need to determine the most effective way to gather evidence for your investigation.

Which of the following approaches would be the MOST effective?

answer

Focus only on the log data, as it is a critical resource for investigating security incidents.

Rely solely on the dashboard as it provides a summary of information drawn from the underlying data sources.

Utilize all the data sources $($dashboards$,$ log data, and host operating system logs$)$ to gather a comprehensive set of evidence.

Concentrate on the host operating system logs as they record events as users and software interact with the system.