The Experts below are selected from a list of 4386 Experts worldwide ranked by ideXlab platform
G Matt - One of the best experts on this subject based on the ideXlab platform.
-
create Restore Point windows 10 System Restore windows 10
2019Co-Authors: G MattAbstract:System Restore Point is a free recovery tool built-in to Microsoft Windows 10 that can be used to reverse certain kinds of changes made to ...
Paolo Gubian - One of the best experts on this subject based on the ideXlab platform.
-
Design and Implementation of a Tool for System Restore Point Analysis
2008 International Conference on Intelligent Information Hiding and Multimedia Signal Processing, 2008Co-Authors: Antonio Savoldi, Paolo GubianAbstract:When a digital investigation is carried out, the main goal of the forensic practitioner is to find out evidence related to a digital crime on the computer under examination. To make the situation more severe, the perpetrator might have destroyed the evidence, for instance, by deleting the software which has been used to commit illicit actions. Moreover, he/she might have used sophisticated anti-forensic techniques to deceive the forensic examination. Fortunately, on Windows XP-based computer Systems, it is possible to observe such attack methods by means of System Restore Point (SRP) analysis. Although the suspect might have removed files or uninstalled applications related to a digital crime, it will be possible to find out traces by analyzing such SRP data structure. We have, therefore, developed an analysis tool that acquires information from the SRP database and analyzes it, by presenting results in a useful format for the forensic examiner. Finally, we have provided a case of study which exemplifies the implemented tool.
Antonio Savoldi - One of the best experts on this subject based on the ideXlab platform.
-
Design and Implementation of a Tool for System Restore Point Analysis
2008 International Conference on Intelligent Information Hiding and Multimedia Signal Processing, 2008Co-Authors: Antonio Savoldi, Paolo GubianAbstract:When a digital investigation is carried out, the main goal of the forensic practitioner is to find out evidence related to a digital crime on the computer under examination. To make the situation more severe, the perpetrator might have destroyed the evidence, for instance, by deleting the software which has been used to commit illicit actions. Moreover, he/she might have used sophisticated anti-forensic techniques to deceive the forensic examination. Fortunately, on Windows XP-based computer Systems, it is possible to observe such attack methods by means of System Restore Point (SRP) analysis. Although the suspect might have removed files or uninstalled applications related to a digital crime, it will be possible to find out traces by analyzing such SRP data structure. We have, therefore, developed an analysis tool that acquires information from the SRP database and analyzes it, by presenting results in a useful format for the forensic examiner. Finally, we have provided a case of study which exemplifies the implemented tool.
