Anti-forensic techniques

From ForensicsWiki
Revision as of 20:11, 15 March 2006 by Uwe Hermann (Talk | contribs)

Jump to: navigation, search

Anti-forensic techniques are engaging in behavior designed to frustrate computer forensic techniques. This can include refusing to run when debugging mode is enabled, refusing to run when running inside of a virtual machine, or deliberately overwriting data. Although some anti-forensic tools have legitimate purposes, such as overwriting sensitive data that shouldn't fall into the wrong hands, like any tool they can be abused.

See also Tools#Anti-forensics_Tools.