| UNIX系统取证的内容搜索方法研究 |
| |
| 引用本文: | 宋蕾,张培晶. UNIX系统取证的内容搜索方法研究[J]. 福建公安高等专科学校学报, 2010, 0(6): 39-44 |
| |
| 作者姓名: | 宋蕾 张培晶 |
| |
| 作者单位: | 中国人民公安大学; |
| |
| 摘 要: | 大量重要的应用服务器或网络服务器使用可靠性强的UNIX操作系统。研究UNIX系统下常用的内容搜索技术及其原理,可以减少取证分析过程中需要检查的数据量,快速挖掘有效证据。UNIX环境下的搜索工具在静态取证分析中的应用研究,可以帮助调查人员在证据收集和分析过程中缩小检查的数据范围,提高取证分析效率。
|
| 关 键 词: | 计算机取证 UNIX 内容搜索 |
Research of Content Search in Computer Forensic of UNIX System |
| |
| SONG Lei,ZHANG Pei-jing. Research of Content Search in Computer Forensic of UNIX System[J]. The Study of Social Public Security, 2010, 0(6): 39-44 |
| |
| Authors: | SONG Lei ZHANG Pei-jing |
| |
| Affiliation: | SONG Lei,ZHANG Pei-jing(Chinese People's Pubic Security University,Beijing 100038,China) |
| |
| Abstract: | Reliable UNIX system is widely used in important application server or network server.Researching the techniques and principles of content search in UNIX system can reduce the amount of inspection data and dig valid evidence fast in the process of analysis.Studying search tools of UNIX system used in static forensic can help investigators to narrow the scope of inspection data,and improve the efficiency of computer forensic analysis in the process of evidence collection and analysis. |
| |
| Keywords: | computer forensic UNIX system content search |
| 本文献已被 CNKI 维普 等数据库收录! |
|
