Starting a New Digital Forensic Investigation Case in Autopsy 4.19+

cool

Very interesting material for someone starting in the IR team. Great video!

Very thorough explanation! Your videos have been pointed to by one of my college professors.

The link in your description for sample data doesn't contain the hash file that is in the video. it only has an image .dd file. How do I proceed ?

How can I do the parts using linux? I'm using a windows vm on mac

I thoroughly enjoyed it! Thanks for the great tutorial.

Thank you so much for this! Do you happen to have a video or guide on how to upload an iPhone or Apple device into FTK imager to create a readable format for autopsy?

Thank you for the best video. I have one doubt, though. During the case creation, we can add M5. However, we cannot add SHA512. there is only the option of adding SHA256.

Awesome tutorial, thanks a lot <3

how do i create a disk image, i want to practise on my own machine and recover things ive deleted from it but cant find anything on how to create a disk image that i can use for autopsy

This is amazing video with great works very well

thank you master for the basic introduction of using autospy in digital forensic. i have watch the video is very interesting. my gratitude and wish you all the best

cannot able forensic about encript ios buck up

Great explanation, thanks

awesome tutorial for learning the Autopsy tool! Can you also share some good sources for getting forensic images for data recovery challenges?

Thanks for the tutorial! I'm a criminal law student so Digital Forensic Investigation is really interesting. I've always wondered how gathering digital evidence works. I learned a lot from your tutorial!

hi is it possible to use autopsy to repair corrupted video file ?

I have an image file on an external HD I run autopsy and it parses through and says finished but it will never load the image in.

everytNice tutorialng. It was still interesting. Wish I had tNice tutorials video when I started out

TNice tutorials was very helpful thankyou.

where to get hash values and other data shown in video, only dd file is downloadable in the given link

Thank you for this well made tutorial!

If you have a partition that is encrypted and have the key /password how do you ingest it or import it?

Thank you so much for this, you are very thorough and provide a high level overview in this video of the various ingest modules which is very helpful. I do have one question though and perhaps this comes later in the video or another video on your channel. When is the best time to configure the settings of Autopsy outside of a case? I would assume it would be prior to starting the first case on my machine. My question really applies to configuring things like the temporary directory of autopsy, changing the central repository, etc etc.

Hi I am new to all of this. I downloaded the practice data and I think I don't have the right format as it does not look the same as what you are showing. I have a windows 11 machine. What should I open the file with? Thanks.

Now we know that the evil cat abused the dog... The dog, curiously named jack, was the victim.

Hi can this be used to view video aswell

wow

Found a new DFIR channel gem <3

Seriously the best introductory/basic-workflow Autopsy video I've watched. I absolutely love that you give additional detail about the modules, and that you explained your workflow.

Thanks for overview, how well does Autopsy do with video?

How do you view emails? I don’t see an option for it because I keep getting a “read error”

Love it, thank you for the content

can I do with android images?

Great video!

What other steps can be taken to be able to view content of a carved deleted file which was unallocated and not viewable using the application feature in Autopsy?

Is it possible to rebuild those kinda files to view the contents? Thanks.

Love the video! I'm 15 and I wanna getting to dfir any advices for learning. Should I go college etc?

Excellent content as always!

Amazing video! Nevertheless, it would have been better to use the dd/ISO files that NIST put at disposal to see all the functionalities of the software

good stuff

FTK and Autopsy are the one's I always use. Great vid.

after trying around 5-11 videos this is the only one that i found working

Great tool for forensic .

This is good. Thanks for this.

How to quickly paste timestamp for documentation in linux?

Fantastic!

Glad that I found your channel 👍🏽👍🏽

Thank you