The science of Anti-forensics attempts to hamper the forensic examinations by attempting to adversely influence the presence, quantumand nature of evidences, thereby making the forensic examinations troublesome to conduct.
As a part of this project, you will be developing a windows based anti-forensic tool (in C/C++/Python/VB.Net) that have legit purpose of overwriting delicate information that shouldn't fall into the wrong hands as this information can be misused.
You will be incorporating following features in the Anti-forensics tool:
- Deletion of Sensitive Data: Destroys sensitive data including (but not limited to)
application logs, registry backups, temporary files, clipboard etc.
- Elimination of Meta-data: Wipes meta-data, which for the most part includes
overwriting the information on the disk space to guarantee there's no outstanding trace of the original information.
- Prevention from Data Generation: Prevents generation of data that might bolster
forensic examinations. For example, any file deletion will generate some events that can be prevented from generation.