Forensic Research & Technology

Biography

Biography: Kingsley Chiwuike Ukaoha

Abstract

IP address spoofing attack is a process in which a user or an attacker changes his or her IP address so as to appear as someone else on the network when the victim replies it goes back to the spoofed address and not to the attacker’s real address thus making the attack’s source tracing difficult for a Forensic Investigator. A network can be polluted through a spoofed IP address. Loss of sensitive data and files, denial of service, document forgery, network poisoning and many more havoc can be caused by IP address spoofing. A network Forensic Investigator is expected to be able to identify criminal activity like IP address spoofing and the people behind the crime, open source based forensic tools can enhance the success rate of the investigator in unraveling the crime and the criminals by providing different forensic models that can be used in the development of new cybercrime investigation tools. This work seeks to introduce open source models for rapid development and building of new cybercrime solutions that can be used as forensic tools in different cases and environment. This is applicable to post-mortem investigations, live triage execution, evidence extraction from mobile devices or cloud services and evidence collection or evidence processing from a network. This framework will provide new solutions with the construction of cutting-edge forensics automation technologies to address existing problem of IP address spoofing attacks in cybercrime scenarios