Digital Forensics Paper

Define and describe the digital forensics practices that you used to complete this exercise Computer forensics is the process of gathering, evaluating and retrieving data, mainly to stop or prevent fraud, to gather and preserve data information for a criminal investigation, or it can be used to recover data that has been deleted or accidentally lost. Most forensic investigators should be required to have knowledge of a computer, the operating system, and hardware and software. Data recovery can be done on CD, DVD, USB, PDA, hard drives, and mobile phones, and many other devices. (Hopkins, n.d.) The first thing we need to do was to gather the names of the files that were lost or deleted. After knowing the files that we were looking for,
It is a process, whereas you restore your data, that has been accidentally deleted, lost, corrupted or is somehow inaccessible to you for any reasons. (Rouse, 2012) There are many ways in which you can recover lost data from your computers or network. One process I like to use it computer recovery or restore to a certain point or day, it keeps most of your files in tack, but it can restore all files that were deleted or corrupted by a virus or a malware attack. There is also a system backup, whereas the administrator can do a complete system restore, and bring the system back to a certain date and time in order to recover the file that you needed, and bring the system back on line and up to date. Most of the time your data should be stored off site somewhere, this way if you have a problem at the main location, such as a power outage or some type of natural disaster and you do not have access to your file, you can still restore them from the off-site location with ease. This all should be listed in your Disaster Recovery Plan, and should be updated on a regular basis as well as your security team.
Explain how you can apply this skill in the