Open Computer Forensics Architecture

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
Open Computer Forensics Architecture
DeveloperKorps landelijke politiediensten
Final release
2.2.0pl4
Repository
  • {{URL|example.com|optional display text}}Lua error in Module:EditAtWikidata at line 29: attempt to index field 'wikibase' (a nil value).
Engine
    Lua error in Module:EditAtWikidata at line 29: attempt to index field 'wikibase' (a nil value).
    Operating systemLinux
    Available inEnglish
    TypeComputer forensics
    Websitesourceforge.net/apps/trac/ocfa/wiki

    The Open Computer Forensics Architecture (OCFA) is a distributed open-source computer forensics framework used to analyze digital media within a digital forensics laboratory environment. The framework was built by the Dutch national police.

    The software was last updated in 2015.[1]

    Architecture

    [edit | edit source]

    OCFA consists of a back end for the Linux platform, it uses a PostgreSQL database for data storage, a custom Content-addressable storage or CarvFS based data repository, and a Lucene index. The front end for OCFA has not been made publicly available due to licensing issues.

    The framework integrates with other open source forensic tools and includes modules for The Sleuth Kit, Scalpel, Photorec, libmagic, GNU Privacy Guard, objdump, exiftags, zip, 7-zip, tar, gzip, bzip2, rar, antiword, qemu-img, and mbx2mbox. OCFA is extensible in C++ or Java.

    See also

    [edit | edit source]

    References

    [edit | edit source]
    1. ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
    [edit | edit source]


    Stub icon

    This free and open-source software article is a stub. You can help Wikipedia by expanding it.

    Retrieved from "http://70.231.62.181/index.php?title=Open_Computer_Forensics_Architecture&oldid=15152816"