Scribd Logo
Upload

Welcome to Scribd!

  • DCOM 150-Lab 1 - Hexa-Decimal Numbering System and File Signature - Fall 2016

    Uploaded by

    Babs Buneez
    195 views6 pages
    Hexa-Decimal Numbering System and File Signature

    Original Title

    DCOM 150-Lab 1 -Hexa-Decimal Numbering System and File Signature- Fall 2016 (1)

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Hexa-Decimal Numbering System and File Signature

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    195 views6 pages

    DCOM 150-Lab 1 - Hexa-Decimal Numbering System and File Signature - Fall 2016

    Uploaded by

    Babs Buneez
    Hexa-Decimal Numbering System and File Signature

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 6

    DCOM 150

    Digital Forensics I
    Lab Package # 1

    Binary, Decimal and Hexa-decimal number system

    DCOM150 1 Fall2016
    Objectives:

    1. To become familiar with the lab procedures.


    2. Learn to work with decimal, binary and hexa-decimal (hex) numbering systems.
    3. Identify file signature (magic number) for a gives files

    Materials Needed:

    USB drive
    Forensics Computer (Your workstation)

    Reference:

    https://www.youtube.com/watch?v=2nbUXtnH0y0&feature=youtu.be

    http://www.garykessler.net/library/file_sigs.html

    www.filext.com

    Procedures:

    Part I LAB RULES


    Your instructor read and explained the lab rules with you in class.

    1. PAY ATTENTION TO SAFETY PROCEDURES AND FOLLOW YOUR


    INSTRUCTORS DIRECTIONS CAREFULLY!

    2. NO FOOD OR DRINKS INSIDE THE LAB AT ANY TIME!

    3. Return ALL equipment, materials, and kits issued to you before leaving the lab
    to your instructor and place them in proper locations for these items in the lab.

    4. Report ALL equipment malfunctions to your instructor as soon as possible.

    5. NO CCBC PROPERTY MAY BE REMOVED FROM THIS AREA WITHOUT


    PERMISSION FROM YOUR INSTRUCTOR! This includes equipment, books,
    manuals, tools, and SOFTWARE products.

    6. NO PERSONAL DISKS OR OTHER SOFTWARE MEDIA MAY BE USED IN


    ANY LAB AT ANY TIME!

    2
    7. The labs may not be used for personal (non-course related) projects or repair of
    personal equipment without permission from the Lab Manager.

    8. KEEP YOUR WORK AREA CLEAN AND ORDERLY. Remember to respect


    the students who may use lab facilities after you leave.

    9. WRITING and/or MARKING ON THE DESKTOPS OR COMPUTER


    COMPONENTS WILL RESULT IN DISCIPLINARY ACTION.

    THINK AND WORK PROFESSIONALLY!!

    Part II Number System Exercise

    Refer ASCII Chart

    1. Convert the following hexa-decimal number into a binary number.

    Hexa-Decimal Binary

    a. F0 ______________

    b. A1 ______________

    c. EF ______________

    d. 2B ______________

    e. 5D ______________

    2. Write the hexa-decimal value for the text provided in the table.
    (Refer to ASCII Chart ).

    Text data I a m h a v i n g f u n
    Hexa-decimal value

    3
    3. Convert your first name (all capital letters) to Binary. Refer the ASCII chart.

    Exampl V I N I T H A
    e:
    Binary 01010110 01001001 01001110 01001001 01010100 010010000

    Hexa-
    Decimal

    Your
    name:
    Binary
    Hexa-
    decimal
    4. Review lecture class notes and answer the following question:

    How many bits are represented by a single hexa-decimal digit?

    Part III Using the HxD (Hex Editor) Program to view the
    hexa-decimal format of various files, identify file
    type, and file extensions
    https://mh-nexus.de/en/downloads.php

    Scenario

    CCBC Police Department has contacted you to request your assessment of a computer
    evidence.

    This lab involves a suspicious death. Patrick Catonsville found his girlfriends dead body
    in her apartment and reported it. The first responding law enforcement officer seized a
    USB drive. A crime scene evidence technician has made a forensic copy of the USB
    drive and locked the original drive in the evidence room securely. Initial examination of
    the USB drive revealed that all files have no extensions. Identify the files, file type, file
    extension and file signature (in bytes) or magic number.

    Hint to view the content of each file: After identifying a file type, you may copy the file
    to a computer after adding a proper file extension. You may view the contents of the file
    after following these steps.

    4
    Files File File Signature File Type File Content (Be Brief)
    Extension or File
    Header(Magic
    Number)
    One
    Two
    Three
    Four
    Five
    Six
    Seven
    Eight
    Nine
    Ten

    Table 1

    1. Did you find any evidence related to the scenario?

    _____________________________________________________________

    PART IV: Clean up


    1. Remove the USB drive safely and return to the instructor.

    2. Shut down your computer.

    3. Ensure your area is clean and returned to normal condition for the next
    class.

    4. Return any materials to the instructor.

    Obtain your instructors signature for this lab: ____________________

    5
    Vocabulary terms:

    Write a brief explanation of each of the following vocabulary terms. You may use
    textbook, class notes or an online resource to answer each term given below.

    1. Bit

    2. Byte

    3. Binary Numbering System

    4. Hexa-decimal Numbering System

    5. ASCII

    6. Digital Evidence

    7. Definition of Computer Forensics

    8. Definition of Data Recovery

    9. File Signature

    10. File Extension

    You might also like