Open Computer Forensics Architecture
From Handwiki | Developer(s) | Korps landelijke politiediensten |
|---|---|
| Final release | 2.2.0pl4
|
| Operating system | Linux |
| Available in | English |
| Type | Computer forensics |
| Website | sourceforge |
The Open Computer Forensics Architecture (OCFA) is a distributed open-source computer forensics framework used to analyze digital media within a digital forensics laboratory environment. The framework was built by the Dutch national police.
Architecture
OCFA consists of a back end for the Linux platform, it uses a PostgreSQL database for data storage, a custom Content-addressable storage or CarvFS based data repository and a Lucene index. The front end for OCFA has not been made publicly available due to licensing issues.
The framework integrates with other open source forensic tools and includes modules for The Sleuth Kit, Scalpel, Photorec, libmagic, GNU Privacy Guard, objdump, exiftags, zip, 7-zip, tar, gzip, bzip2, rar, antiword, qemu-img, and mbx2mbox. OCFA is extensible in C++ or Java.
See also
- List of digital forensics tools
External links
- Linux Magazine article on OCFA
- Open Source Software for Digital Forensics
 |  |
Categories: [Digital forensics software] [Data recovery] [Distributed computing architecture]
↧ Download as ZWI file | Last modified: 09/06/2024 11:07:03 | 28 views
☰ Source: https://handwiki.org/wiki/Software:Open_Computer_Forensics_Architecture | License: CC BY-SA 3.0
KSF