Presentation is loading. Please wait.

Presentation is loading. Please wait.

P2P Investigation PEDRO GALLEGOS. Topics  Overview of P2P  Direct vs Hearsay  Investigation Steps  Analysis Gnutella Protocol  RoundUp.

Published byJemimah Willis Modified over 8 years ago

Similar presentations

Presentation on theme: "P2P Investigation PEDRO GALLEGOS. Topics  Overview of P2P  Direct vs Hearsay  Investigation Steps  Analysis Gnutella Protocol  RoundUp."— Presentation transcript:

1 P2P Investigation PEDRO GALLEGOS

2 Topics  Overview of P2P  Direct vs Hearsay  Investigation Steps  Analysis Gnutella Protocol  RoundUp

3 Overview of P2P  P2P stands for Peer-to-Peer  Way to distribute files  Gnutella  Supports queries  Peers inform each other of files  BitTorrent  Uses torrent files  Trackers inform client of peers

4 Direct VS Hearsay  Direct  When an investigator has a direct connection, that is,a TCP connection to a process on a remote computer, and receives information about that specific computer, that information is direc t  Hearsay  When a process on one remote machine relays information for or about another,different machine.

5 Investigation Steps  Determine Files of Interest (FOIs)  Use P2P to find candidates  Narrow down the candidates  Attempt to verify possession or distribution

6 Investigation Steps Cont.  A subpoena to the ISP is obtained  On basis of evidence, obtain search warrant  Perform search

7 Analysis Gnutella Protocol Overview  Before warrant is obtained, it is important to only gather data that is in public domain through:  Queries  Swarming Information  Browsing Host  File download

8 RoundUp  RoundUp is a tool for forensically valid investigations of the Gnuetella network

9 Questions?

10 Sources:  Forensic Investigation of Peer-to-Peer File Sharing Network. Robert Erdely, Thomas Kerle, Brian Levine, Marc Liberatore and Clay Shields. http://www.dfrws.org/2010/proceedings/2010-311.pdf

Download ppt "P2P Investigation PEDRO GALLEGOS. Topics  Overview of P2P  Direct vs Hearsay  Investigation Steps  Analysis Gnutella Protocol  RoundUp."

Similar presentations

Making P2P Networks Scalable a paper presentation by Derek Tingle.

Making P2P Networks Scalable a paper presentation by Derek Tingle.
The BitTorrent Protocol. What is BitTorrent?  Efficient content distribution system using file swarming. Does not perform all the functions of a typical.

The BitTorrent Protocol. What is BitTorrent?  Efficient content distribution system using file swarming. Does not perform all the functions of a typical.
Clayton Sullivan PEER-TO-PEER NETWORKS. INTRODUCTION What is a Peer-To-Peer Network A Peer Application Overlay Network Network Architecture and System.

Clayton Sullivan PEER-TO-PEER NETWORKS. INTRODUCTION What is a Peer-To-Peer Network A Peer Application Overlay Network Network Architecture and System.
BotTorrent: Misusing BitTorrent to Launch DDoS Attacks Karim El Defrawy, Minas Gjoka, Athina Markopoulou UC Irvine.

BotTorrent: Misusing BitTorrent to Launch DDoS Attacks Karim El Defrawy, Minas Gjoka, Athina Markopoulou UC Irvine.
236349 Project in Computer Security Integrating TOR’s attacks into the I2P darknet Chen Avnery Amihay Vinter.

Project in Computer Security Integrating TOR’s attacks into the I2P darknet Chen Avnery Amihay Vinter.
Peer to Peer (P2P) Networks and File sharing. By: Ryan Farrell.

Peer to Peer (P2P) Networks and File sharing. By: Ryan Farrell.
File Distribution BitTorrents Mike Bohrer BitTorrents Mike Bohrer.

File Distribution BitTorrents Mike Bohrer BitTorrents Mike Bohrer.
Paul Solomine Security of P2P Systems. P2P Systems Used to download copyrighted files illegally. The RIAA is watching you… Spyware! General users become.

Paul Solomine Security of P2P Systems. P2P Systems Used to download copyrighted files illegally. The RIAA is watching you… Spyware! General users become.
Basic Computer Networks Configurations (cont.) School of Business Eastern Illinois University © Abdou Illia, Spring 2006 Week 2, Thursday 1/19/2006)

Basic Computer Networks Configurations (cont.) School of Business Eastern Illinois University © Abdou Illia, Spring 2006 Week 2, Thursday 1/19/2006)
Responder Anonymity and Anonymous Peer-to-Peer File Sharing. by Vincent Scarlata, Brian Levine and Clay Shields Presentation by Saravanan.

Responder Anonymity and Anonymous Peer-to-Peer File Sharing. by Vincent Scarlata, Brian Levine and Clay Shields Presentation by Saravanan.
Presented by Stephen Kozy. Presentation Outline Definition and explanation Comparison and Examples Advantages and Disadvantages Illegal and Legal uses.

Presented by Stephen Kozy. Presentation Outline Definition and explanation Comparison and Examples Advantages and Disadvantages Illegal and Legal uses.
Comparing Hybrid Peer-to-Peer Systems Beverly Yang and Hector Garcia-Molina Presented by Marco Barreno November 3, 2003 CS 294-4: Peer-to-peer systems.

Comparing Hybrid Peer-to-Peer Systems Beverly Yang and Hector Garcia-Molina Presented by Marco Barreno November 3, 2003 CS 294-4: Peer-to-peer systems.
A. Frank Internet Resources Discovery (IRD) Peer-to-Peer (P2P) Technology (2) Thanks to Carmit Valit and Olga Gamayunov.

A. Frank Internet Resources Discovery (IRD) Peer-to-Peer (P2P) Technology (2) Thanks to Carmit Valit and Olga Gamayunov.
P2P WeeSan Lee

P2P WeeSan Lee
1CS 6401 Peer-to-Peer Networks Outline Overview Gnutella Structured Overlays BitTorrent.

1CS 6401 Peer-to-Peer Networks Outline Overview Gnutella Structured Overlays BitTorrent.
Free Powerpoint Templates Page 1 Free Powerpoint Templates Peer-2-Peer File Sharing Kenie Moses TECH621Social Internet Spring 2011.

Free Powerpoint Templates Page 1 Free Powerpoint Templates Peer-2-Peer File Sharing Kenie Moses TECH621Social Internet Spring 2011.
The Current Landscape of P2P File Sharing: Challenges and Future Directions Kevin Bauer Ph.D. candidate University of Colorado.

The Current Landscape of P2P File Sharing: Challenges and Future Directions Kevin Bauer Ph.D. candidate University of Colorado.
Forensic and Investigative Accounting

Forensic and Investigative Accounting
Introduction Widespread unstructured P2P network

Introduction Widespread unstructured P2P network
Cmpe 494 Peer-to-Peer Computing Anıl Gürsel Didem Unat.

Cmpe 494 Peer-to-Peer Computing Anıl Gürsel Didem Unat.

Similar presentations

Ads by Google