Glossary - MSAB

MSAB Digital Forensics Glossary

Termes clés et definitions

Bienvenue dans notre glossaire de forensique numérique – Une ressource pour des définitions claires et concises des termes clés utilisés dans les enquêtes de forensique numérique. Ce glossaire comprend la terminologie utilisée dans le domaine des enquêtes sur les smartphones, de l’extraction de données mobiles et de l’analyse de preuves numériques provenant d’appareils mobiles.

Les téléphones portables devenant un élément central de la cybercriminalité et des enquêtes numériques, il est essentiel de comprendre des concepts essentiels tels que l’IMEI, l’acquisition de données mobiles, les artefacts d’applications et l’analyse de la carte SIM. Vous trouverez également des définitions de termes de criminalistique numérique plus généraux tels que les valeurs de hachage, les métadonnées et la chaîne de possession, le tout expliqué dans un format simple et accessible. Que vous soyez un spécialiste de la criminalistique mobile, un agent des forces de l’ordre, un professionnel de la cybersécurité ou un étudiant, ce glossaire offre des explications actualisées pour vous aider à naviguer dans le domaine en évolution rapide de la criminalistique mobile.

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z

WAN (Wide Area Network)

A geographically dispersed network (e.g., the internet), analyzed in forensics to trace data across regions or investigate remote attacks.

WannaCry

A infamous ransomware strain exploiting Windows vulnerabilities, studied in forensics to trace its spread, decrypt files, or track cryptocurrency payments.

War Driving

The act of scanning for unsecured Wi-Fi networks while mobile, investigated in forensics to detect unauthorized access points or network intrusions.

Web History

A record of visited websites stored in a browser, analyzed in forensics to establish timelines, uncover user behavior, or link to criminal online actions.

Web Proxy

An intermediary server rerouting web traffic, examined in forensics to trace true IP origins or bypass anonymity attempts in cyber investigations.

Whitelist

Eine Liste genehmigter Entitäten (z. B. Apps, IPs), die in der forensischen Analyse überprüft wurden, um Abweichungen oder unautorisierte Aktivitäten außerhalb der erlaubten Parameter zu erkennen.

Wi-Fi Forensics

Die Analyse von Daten aus drahtlosen Netzwerken (z. B. SSIDs, Verbindungsprotokolle), die verwendet wird, um Geräte-Standorte zu verfolgen, genutzte Netzwerke zu identifizieren oder unbefugten Zugriff zu erkennen.

Windows Event Logs

System-generated records of activities (e.g., logins, errors), parsed in forensics to reconstruct events, detect intrusions, or verify user actions.

Windows Registry

Une base de données hiérarchique des paramètres et configurations de Windows, exploitée en informatique légale pour des preuves d’utilisation de logiciels, de modifications système ou de données cachées.

Wipe

The intentional erasure of data from a device, investigated in forensics to determine intent, recover remnants, or assess anti-forensic techniques.

Wireframe

A basic design structure (e.g., of an app or website), occasionally analyzed in forensics to understand user interfaces or reconstruct digital environments.

Wireless Access Point (WAP)

A device enabling Wi-Fi connectivity, examined in forensics to map network usage, identify connected devices, or trace local communications.

Wireshark

A popular network protocol analyzer, used in forensics to capture and dissect packet data, revealing communication details or malicious traffic.

Workflow

Le flux de travail MSAB, conçu pour les intervenants de première ligne, permet d’utiliser le MSAB Kiosk, la MSAB Tablett et XRY Express tout en s’alignant sur vos procédures opérationnelles standard.

Worm

Self-replicating malware spreading across networks, analyzed in forensics to trace its propagation, payload, or infection source.

Write Blocker

A hardware or software tool preventing modifications to a storage device during forensic imaging, ensuring evidence integrity by blocking write operations.

This website uses cookies

Cookies ("cookies") consist of small text files. The text files contain data which is stored on your device. To be able to place some type of cookies we need your consent. We at MSAB, corporate identity number 556244-3050 use these types of cookies. To read more about which cookies we use and storage duration, click here to get to our cookiepolicy.

Manage your cookie-settings

Necessary cookies

Necessary cookies are cookies that need to be placed for fundamental functions on the website to work. Fundamental functions are for instance cookies that are needed for you to use menus and navigate the website.

Functional cookies

Functional cookies need to be placed for the website to perform in the way that you expect. For instance to remember which language you prefer, to know if you are logged in, to keep the website secure, remember login credentials or to enable sorting of products on the website in the way that you prefer.

Statistical cookies

To know how you interact with the website we place cookies to collect statistics. These cookies anonymize personal data.

Personalization cookies

In order to provide a better experiance we place cookies for your preferances

Ad measurement cookies

To be able to provide a better service and experience we place cookies to tailor marketing for you. Another purpose for this placement is to market products or services to you, give tailored offers or market and give recommendations on new concepts based on what you have bought from us previously.

Ad measurement user cookies

In order to show relevant ads we place cookies to tailor ads for you

Personalized ads cookies

To show relevant and personal ads we place cookies to provide unique offers that are tailored to your user data