Ftklipse - Design and Implementation of an Extendable Computer Forensics Environment: Specification Design Document
Marc-Andr\'e Laverdi\`ere, Serguei A. Mokhov, Suhasini Tsapa, and, Djamel Benredjem
TL;DR
This paper presents the design and implementation of Ftklipse, an extendable, plugin-based computer forensics environment with a user-friendly GUI, supporting tool integration, case management, evidence handling, and report generation.
Contribution
It introduces a modular, plugin-based forensic environment with comprehensive features, enabling flexible tool integration and management in computer forensics.
Findings
Implemented core features in Ftklipse including plugin support and case management.
Demonstrated the environment's capability to integrate various forensic tools.
Showcased the system's usability and extensibility in forensic workflows.
Abstract
The purpose of this work is to design and implement a plugin-based environment that allows to integrate forensic tools working together to support programming tasks and addition of new tools. Integration is done through GUI components. The end-system environment must have user friendly GUI, configuration capabilities, plug-in capabilities to insert/inject new tools, case management, and chain of custody capabilities, along with evidence gathering capabilities, evidence preservation capabilities, and, finally report generation capabilities. A subset of these requirements has been implemented in Ftklipse, an open-source project, which is detailed throughout the rest of this document.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsDigital and Cyber Forensics · Advanced Malware Detection Techniques · Software Engineering Research