Skip to main content

Digital Forensics :Evidence Identification & Seizure.

In digital forensics, the identification and seizure of electronic evidence is a critical step in the investigation process. Here are some guidelines for identifying and seizing digital evidence:

Identify relevant devices and media: The first step is to identify the devices and media that are likely to contain relevant digital evidence. This may include computers, smartphones, external hard drives, USB drives, and cloud storage accounts.

Secure the scene: The scene where the evidence is located must be secured to prevent any unauthorized access, modification, or destruction of the evidence. This may involve turning off devices, unplugging them from the network, or placing them in a Faraday bag to prevent remote access.

Document the location and condition of the evidence: The location and condition of the evidence must be documented in detail. This includes noting the make and model of the device, its serial number, and any identifying marks or features.

Take photographs: Photographs should be taken of the scene and the devices to document their condition and location.

Use forensic tools: Digital evidence should be collected using forensic tools and techniques to ensure its integrity and reliability. This may include making a forensic image of the device, copying relevant data to a separate device, or using a write blocker to prevent any changes to the evidence.

Follow legal and ethical guidelines: The collection of digital evidence must be conducted in accordance with legal and ethical guidelines. This includes obtaining necessary permissions and approvals, such as a search warrant, and ensuring that the collection process does not violate the privacy rights of individuals.

Maintain chain of custody: The collected evidence must be properly labeled, secured, and documented throughout the investigation to establish a clear chain of custody.

By following these guidelines, digital forensics investigators can identify and seize digital evidence in a manner that preserves its integrity and reliability, and ensures that it is admissible in a court of law.

Popular posts from this blog

Preliminary Investigations Report.

A preliminary investigations report is an initial document that summarizes the findings and progress of an ongoing investigation into an incident. It serves as an interim report, providing an overview of the initial information collected and the steps taken during the early stages of the investigation. Here are some key components typically included in a preliminary investigations report: Introduction: Provide a brief introduction to the report, stating the purpose, scope, and context of the investigation. Incident Summary: Provide a concise summary of the incident, including the date, time, location, and a high-level description of what occurred. Investigation Team: Identify the members of the investigation team or individuals involved in the preliminary investigation. Methodology and Approach: Describe the methods, techniques, and approaches used in the preliminary investigation. This may include witness interviews, documentation review, site visits, data analysis, and any other inve...
Read more

Forgery.

Forgery refers to the act of creating, altering, or imitating a document, signature, or other item with the intent to deceive or defraud others. It is considered a criminal offense in many jurisdictions, including Kenya. In Kenya, forgery is primarily addressed under the Penal Code, Sections 340 to 359. These sections define and establish offenses related to forgery, including the following: Forgery of Documents: Section 340 of the Penal Code criminalizes the forgery of documents, such as legal instruments, contracts, banknotes, stamps, or any other document with legal or financial significance. Making False Documents: Section 347 makes it an offense to make false documents with the intent to use them or cause them to be used as genuine. This includes creating counterfeit documents, altering existing documents, or using false information to create a document. Uttering False Documents: Section 352 addresses the offense of uttering false documents, which refers to the act of using or pre...
Read more

The Penal Code.

The Penal Code of Kenya is a legal document that outlines the various criminal offenses and their corresponding penalties in the country. It provides a framework for the criminal justice system in Kenya and serves as a guide for law enforcement agencies, prosecutors, judges, and other legal professionals involved in the administration of justice. The Penal Code is governed by the laws of Kenya and has undergone several revisions over the years to reflect changes in society and legal developments. The most recent version of the Penal Code in Kenya is based on the Penal Code Act, Chapter 63 of the Laws of Kenya. The Penal Code covers a wide range of criminal offenses, including but not limited to offenses against the person (such as murder, assault, and rape), offenses against property (such as theft, burglary, and arson), offenses relating to public order (such as rioting and unlawful assembly), offenses against morality (such as prostitution and pornography), offenses against the state...
Read more