Abstract
Steganography is one of the anti-forensic techniques that allow criminals to hide information in other messages so that during the investigation, the investigator will experience problems and difficulty in getting evidence of original information on the crime. Therefore an investigator is required to have the ability to be able to find and extract (decoding) using the right tools when opening messages that have been inserted by steganography techniques. The purpose of this study is to analyze digital evidence using the static forensics method by applying the six stages to the Digital Forensics Research Workshop (DFRWS) framework and extracting steganography on files that have been compromised based on case scenarios involving digital crime. The tools used are FTK Imager, Autopsy, WinHex, Hiderman, and StegSpy. The results of extraction of 9 out of 10 files that were scanned by steganography files had 90% success and 10% of steganography files were not found, so it can be concluded that the extraction files in steganographic messages can be used as legal digital proofs according to law.
Highlights
Steganography is one of the anti-forensic techniques that allow criminals to hide information in other messages so that during the investigation, the investigator will experience problems and difficulty in getting evidence of original information on the crime
using the right tools when opening messages that have been inserted by steganography techniques
extracting steganography on files that have been compromised based on case scenarios involving digital crime
Summary
Semakin luasnya pemanfaatan komputer dalam berbagai aspek kehidupan manusia selain memberi dampak positif juga membawa dampak negatif dengan semakin banyaknya aktivitas kriminal [1]. Laporan tersebut menyadarkan forensik digital dalam mendukung proses investigasi dan pencarian barang bukti kasus kejahatan pada bidang komputer (cybercrime). Forensik digital merupakan sebuah cabang ilmu yang menerapkan teknik investigasi dan analisis pada media komputer atau media penyimpanan digital dengan cara mengidentifikasi, mengumpulkan, memeriksa, dan menyimpan bukti kasus kejahatan agar dapat dipertanggungjawabkan secara hukum [3]. Pada penelitian ini dilakukan proses investigasi pada bukti digital menggunakan framework DFRWS dan melakukan ekstraksi file yang telah disisipi pesan steganografi. Penelitian ini membahas proses menemukan dan menganalisis barang bukti berupa file dengan format *.txt dan *.pdf yang disembunyikan oleh pelaku kejahatan menggunakan teknik steganografi, dan file tersebut telah di hapus oleh pelaku dari media penyimpanan digital. Pemanfaatan serta penerapan framework atau kerangka kerja forensik dalam menangani kasus digital merupakan faktor penting untuk mendukung proses investigasi tindak kejahatan cybercrime agar lebih efektif dan efisien [11].
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
