Content deleted Content added
Deltaspace42 (talk | contribs) removed Category:Computer forensics using HotCat |
m HTTP to HTTPS for SourceForge |
||
| (3 intermediate revisions by 3 users not shown) | |||
Line 11:
| discontinued = yes
| genre = [[Computer forensics]]
| website = {{URL|
}}
The '''Open Computer Forensics Architecture''' (OCFA) is a [[distributed computing|distributed]] [[open-source software|open-source]] [[computer forensics]] framework used to analyze [[digital media]] within a digital forensics laboratory environment. The framework was built by the [[Netherlands|Dutch]] national police.
==Architecture==
OCFA consists of a [[Front and back ends|back end]] for the [[Linux]] platform, it uses a [[PostgreSQL]] database for data storage, a custom [[Content-addressable storage]] or CarvFS based data repository, and a [[Lucene]] index. The [[front end processor (program)|front end]] for OCFA has not been made publicly available due to licensing issues.
The framework integrates with other open source forensic tools and includes modules for [[The Sleuth Kit]], Scalpel, Photorec, libmagic, [[GNU Privacy Guard]], [[objdump]], exiftags, zip, [[7-zip]], [[tar (computing)|tar]], [[gzip]], [[bzip2]], [[RAR (file format)|rar]], [[antiword]], qemu-img, and mbx2mbox. OCFA is extensible in [[C++]] or [[Java (programming language)|Java]].
Line 24:
==External links==
* {{Official website|
* [http://www.linux-magazine.com/Issues/2008/93/OCFA Linux Magazine article on OCFA]
* [https://www.springer.com/computer/security+and+cryptology/book/978-1-4419-5802-0 Open Source Software for Digital Forensics]
Line 33:
[[Category:Data recovery]]
[[Category:Distributed computing architecture]]
[[Category:Software using the
{{Free-software-stub}}
| |||