Digital Forensics - Branches - Network Forensics

Network Forensics

Network forensics is concerned with the monitoring and analysis of computer network traffic, both local and WAN/internet, for the purposes of information gathering, evidence collection, or intrusion detection. Traffic is usually intercepted at the packet level, and either stored for later analysis or filtered in real-time. Unlike other areas of digital forensics network data is often volatile and rarely logged, making the discipline often reactionary.

In 2000 the FBI lured computer hackers Aleksey Ivanov and Gorshkov to the United States for a fake job interview. By monitoring network traffic from the pair's computers, the FBI identified passwords allowing them to collect evidence directly from Russian-based computers.

Read more about this topic:  Digital Forensics, Branches

Other articles related to "network forensics, forensics, network, networks":

Network Forensics - Wireless Forensics
... Wireless forensics is a sub-discipline of network forensics ... The main goal of wireless forensics is to provide the methodology and tools required to collect and analyze (wireless) network traffic that can be presented as valid digital evidence in a court of law ... Analysis of wireless network traffic is similar to that on wired networks, however there may be the added consideration of wireless security measures ...

Famous quotes containing the word network:

    Parents need all the help they can get. The strongest as well as the most fragile family requires a vital network of social supports.
    Bernice Weissbourd (20th century)