• DFIR Resources
  • Backtracking Tool Root-Tracker to Identify True Source of Cyber Crime

Backtracking Tool Root-Tracker to Identify True Source of Cyber Crime

Hot
148 1

DFIR Resources

Research and Documentation
White Papers & Journals
he attacker. But the original attacker is hiding somewhere behind the ISP. Reaching up to them is the most critical aspect of
network forensics. This paper broadly aims at building secure and forensically sound framework called Root-tracker for
Identification of real source of cybercrime by reaching beyond the ISP. The approach of device fingerprinting is used for unique
identification of criminal device which will act as legal and infallible evidence in court of law. Root Tracker has been implemented
as a prototype and deployed on AWS. Testing is done in real time environment and the results shows that Root-Tracker is able to
verify the evidences partially. Even if the attacker tries to format the system or modifies any of device parameter Root-Tracker can
still identify the attacker device and generates partial evidence match report.

Attachments

  • File Description
    File Size
    File Type
    Downloads
  • 1-s2.0-S187705092031098X-main
    1 MB
    2

User comments

There are no user comments for this listing.
Already have an account? or Create an account