Publication

Abstract :

In today's investigations concerning cybercrime, virus detection, and legal actions, the forensic analysis of digital evidence-especially from disk images-is essential. One essentialtool in this field is the Disk Image Analyzer Tool (DIAT), which gives investigators the capacity to examine disk images in great detail, find buried information, recognize malicious code, and provide evidence that is useful in court. The usefulness, approaches, and importance of DIAT in forensic analysis are all thoroughly examined in this work. It talks about the keycomponents of DIAT, such as how to parse disk pictures, and partitions, pull out metadata, find anomalies, Database Tables and make investigative procedures easier. This work also emphasizes the useful uses of DIAT in forensic contexts,including malware signature identification, file system artifact analysis, and digital timeline reconstruction. The effectiveness and drawbacks of DIAT are evaluated via a study of case studies and experimental assessments, providing insight into howit might improve forensic investigations and progress digital forensic techniques. Additionally, some improvements and futureapproaches for DIAT are suggested to enhance its capacity to handle the changing demands of digital forensic investigation.