Chapter 2

Key Python Language Elements for Forensics

Abstract

This chapter provides a walk-through of installing Python along with a suitable Integrated Development Environment. Next, we create a cross platform template Python Forensic Script that can be reused when creating new simple or expanded scripts, providing a baseline starting point. We will then use the template to demonstrate a useful Python script and along the way leverage key Python language elements along with the Python Standard Library to process files specified via the command line. Finally, we introduce the FileExaminer() Class to extract meaningful information from provided files.

Keywords

Python; Forensics; Python Standard Library; argparse; hashlib; Time; os; Python ...

Get Integrating Python with Leading Computer Forensics Platforms now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Integrating Python with Leading Computer Forensics Platforms by Chet Hosmer

Key Python Language Elements for Forensics

Abstract

Keywords

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly