P2P Forensic plugin for Autopsy
Switch branches/tags
Nothing to show
Clone or download
Permalink
Failed to load latest commit information.
P2PForensic Remove module from plugin name and changed finish message Oct 4, 2016
.gitignore Initial commit Sep 8, 2016
LICENSE Update LICENSE Oct 2, 2016
README.md Update README.md Oct 4, 2016

README.md

P2PForensic

P2P forensic is a plugin developed for Autopsy Version 4.1.1.

The main purpose of this plugin is try to get usage information of P2P Windows programs in a forensics environment.

The current version has been developed using the following P2P programs:

  • Emule v0.50a
  • uTorrent 3.4.8
  • bitTorrent 7.9.9

From a forensic view could be useful get information about the usage of P2P clients. Files downloaded or shared could change the sentence in court.

Install

P2P forensic has been written in Python for installation you just need to place the folder inside the Python Module directory