Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

1. A forensic investigator at a crime lab is performing a forensic analysis of a

ID: 3756840 • Letter: 1

Question

1. A forensic investigator at a crime lab is performing a forensic analysis of a hard drive that was brought in by state troopers. They make a mistake by using the wrong forensic tool during their forensics examination. What should the investigator do?

a. Document the mistake and workaround the problem.
b. Document the mistake and press on with remaining tasks
c. Disclose the mistake and assess another area of the hard drive
d. Disclose the mistake and preserve the chain of custody

2. When data is collected for a forensic investigation, what order should be followed?

a. Order of volatility
b. Order of risk
c. Order of vulnerability
d. Order of seizure

3. Along with the forensic investigation effort, the man hours and expense should not be tracked since the costs are always justified regardless, of the actual amount involved.

True or false?

4. For what purpose would it be desired to capture the system image?

a. To facilitate security management
b. Check processor performance
c. So memory analysis can be performed later
d. To capture network packets
e. To store the dump file offsite

5. The forensic investigator at a crime lab will be performing a forensic analysis of a hard drive that was brought in by state troopers. What should be done before performing the analysis?

a. Capture data in order of volatility
b. Chain of custody
c. Capture video
d. Capture a system image

Explanation / Answer

1) (B) is the correct option.

The forensic investigator will document the mistake and press on with the remaining tasks.

2) (A) is the correct option.

When data is collected for a forensic investigation the order of volatility is followed to prevent loss of important evidence.

3) is FALSE. The man hours and total expense is tracked for transparency of the system and it also varies based on the situation and importance.

4) (A) is the correct option. To facilitate security management, system image is captured.

5) (A) is the correct option. The forensic investigator should collect all the data precisely before beginning the analysis.

Hope this helps.

Related Questions

1. A firm operates two distribution centers, one in Phoenix and the other is Chi
Question #3180183
1. A firm operates two distribution centers, one in Phoenix and the other is Chi
Question #3180189
1. A firm produces two products X and Y. Product X requires 2 hour of labor , 1
Question #1107922
1. A firm reported working capital of $5.5 million and fixed assets of $20 milli
Question #2698463
1. A firm starts production of a new product, and forecasts production and sales
Question #407240
1. A firm that is an oligopolist is thinking about lowering the price of the sta
Question #1095982
1. A firm that makes shopping shelfs for supermarkets and other stores recently
Question #473154
1. A firm under the monopolistic competition market structure faces ____________
Question #1227859

Navigate

Previous
1. A force of F = 65 N is used to drag a crate d = 7 m across a floor. The force
Next
1. A forester studying the effects of fertilization on certain pine forests in t

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.