Abstract

The Tor browser is widely used for anonymity, providing layered encryption for enhanced privacy. Besides its positive uses, it is also popular among cybercriminals for illegal activities such as trafficking, smuggling, betting, and illicit trade. There is a need for Tor Browser forensics to identify its use in unlawful activities and explore its consequences. This research analyzes artifacts generated by Tor on Windows-based systems. The methodology integrates forensic techniques into incident responses per NIST SP (800-86), exploring areas such as registry, storage, network, and memory using tools like bulk-extractor, autopsy, and regshot. We propose an automated PowerShell script that detects Tor usage and retrieves artifacts with minimal user interaction. Finally, this research performs timeline analysis and artifact correlation for a contextual understanding of event sequences in memory and network domains, ultimately contributing to improved incident response and accountability.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Retrieving TOR Browser Digital Artifacts for Forensic Evidence
Valli Kumari Vatsavayi ... Kalidindi Sandeep Varma
-
Valli Kumari Vatsavayi, et. al.Valli Kumari Vatsavayi ... Kalidindi Sandeep Varma
01 Jan 2020
MLATs and TorBrowser: Mutual Legal Assistance Treaties in Online Anonymity Technology and Domestic Surveillance
Sarah Cortes
SSRN Electronic Journal | VOL. -
Sarah CortesSarah Cortes
12 Feb 2015
Tor traffic identification
Priya Mayank ... A K Singh
-
Priya Mayank, et. al.Priya Mayank ... A K Singh
01 Nov 2017
Tor forensics: Proposed workflow for client memory artefacts
Malak Alfosail ... Peter Norris
Computers & Security | VOL. 106
Malak Alfosail, et. al.Malak Alfosail ... Peter Norris
04 May 2021
View more papers

More From: Information

Paper Title
Journal
Date
Author
Research on the Application of Topic Models Based on Geological Disaster Information Mining
Gang Cheng ... Yaxi Wu
Information | VOL. 15
Gang Cheng, et. al.Gang Cheng ... Yaxi Wu
10 Dec 2024
Leveraging Large Language Models in Tourism: A Comparative Study of the Latest GPT Omni Models and BERT NLP for Customer Review Classification and Sentiment Analysis
Konstantinos I Roumeliotis ... Dimitrios K Nasiopoulos
Information | VOL. 15
Konstantinos I Roumeliotis, et. al.Konstantinos I Roumeliotis ... Dimitrios K Nasiopoulos
10 Dec 2024
Computational Analysis of Self-Healing in Nanomaterials Using Neural Spike Algorithms
Jongho Seol ... Abhilash Kancharla
Information | VOL. 15
Jongho Seol, et. al.Jongho Seol ... Abhilash Kancharla
10 Dec 2024
Recognition of Industrial Spare Parts Using an Optimized Convolutional Neural Network Model
Chandralekha Mohan ... Priyadharshini Jayadurga Nallathambi
Information | VOL. 15
Chandralekha Mohan, et. al.Chandralekha Mohan ... Priyadharshini Jayadurga Nallathambi
10 Dec 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.