--- /dev/null
+
+\newpage\section{Questions (12 points)}
+\subsection{How and when did Mr. Smith and Mr. Mayer communicate? (2 point)}
+
+2012-12-06 14:35:38 Johannes Smith 06603169718
+2012-12-06 17:45:36 Johannes Smith +436605166042
+
+
+
+\subsection{What information was exchanged between Mr. Smith and Mr. Mayer? (3 points)}
+
+\subsection{Can you find any evidence or hints that support the suspicion of insider trade? (3 points)}
+
+\subsection{Was the person that the witness identified really Mr. Mayer? (2 points)}
+
+\subsection{Mr. Mayer seems to have more secrets than initially expected. What is his big secret? (2 points)}
+
+\subsection{How and when did Mr. Smith and Mr. Mayer communicate? (2 point)}
+
+
+
+\newpage\section{Details}
+\subsection{Sources}
+\subsubsection{iPhone.tar.gz (IPHONE)}
+iPhone backup image from Allegro Mayer's Phone.
+\begin{quote}
+\textbf{size}: 6775181 byte\\
+\textbf{''file''-output}: gzip compressed data, last modified: Fri Dec 14 11:42:54 2012, from Unix\\
+\textbf{sha512}\\\ttfamily{
+ff746e574a0d668e1d82c3ff72501a75eabe642e1dee7f20d3d74b9fe72054f9\\
+9b9a91ded1b3f98067a63065423c620c73c42c65e13c3b110424854b3e7f6678}
+\end{quote}
+
+\subsubsection{Android.tar.gz (ANDROID)}
+Android image from 's phone.
+\begin{quote}
+\textbf{size}: 270397822 byte\\
+\textbf{''file''-output}: gzip compressed data, last modified: Fri Dec 14 12:06:37 2012, from Unix\\
+\textbf{sha512}\\\ttfamily{
+9614e30affc09d1cbfad5a96e43b2e40dae3c5c123db22dcbd53e980d14418d9\\
+ab18c6a2b5b9f8a0e1539474612a4a7ceae627255a2169565f0dddf3409ef67d}
+\end{quote}
+
+
+\subsection{Used tools on Host}
+Tools that were used for analysis (-{}-version):
+\begin{itemize}
+\item sha512sum (GNU coreutils) 8.22
+\item ls (GNU coreutils) 8.22
+\item file 5.18
+\end{itemize}
+
+
+\subsection{Machines}
+\begin{itemize}
+\item \textbf{Host machine}\\
+Linux rebx 3.14.0-gentoo-somenet.org \#1 SMP Sun Apr 6 01:00:17 CEST 2014 x86\_64 Intel(R) Core(TM)2 Duo CPU T9300 \@ 2.50GHz GenuineIntel GNU/Linux
+\end{itemize}
+
--- /dev/null
+\RequirePackage{snapshot} % stats of included files: $filename.dep
+
+\documentclass[10pt,a4paper,ngerman]{article}
+\usepackage[ngerman]{babel}
+
+%%%%% Formatting and encoding %%%%%
+% encoding
+\usepackage[T1]{fontenc}
+\usepackage[utf8]{inputenc}
+
+% page
+\usepackage[columnsep=1.75cm,lmargin=1.75cm,rmargin=1.75cm,tmargin=2.5cm,bmargin=2.5cm]{geometry}
+\setlength{\parindent}{0pt}
+
+\usepackage{fancyhdr}
+\pagestyle{fancy}
+\lhead{}
+\chead{}
+\rhead{}
+\cfoot{}
+\fancyhead[LE,RO]{\leftmark}
+\fancyfoot[LE,RO]{\thepage}
+
+% Use sans serif font.
+\renewcommand*{\familydefault}{\sfdefault}
+
+% change heading fontsizes.
+\usepackage{sectsty}
+\subsectionfont{\normalsize}
+\subsubsectionfont{\small}
+
+% \chapter hacks
+% Create \Hide command (used for chapters)
+\usepackage[explicit]{titlesec}
+\newcommand*\Hide{\titleformat{\chapter}[display]{}{}{0pt}{\Huge}\titleformat{\part}{}{}{0pt}{}}
+
+% inhibit creation of new double page on new chapter.
+\usepackage{etoolbox}
+\makeatletter
+\patchcmd{\chapter}{\if@openright\cleardoublepage\else\clearpage\fi}{}{}{}
+\makeatother
+
+% change heading margins.
+\titlespacing*{\chapter}{0pt}{0pt}{-40pt}
+\titlespacing*{\section}{0pt}{9pt}{3pt}
+\titlespacing*{\subsection}{0pt}{6pt}{0pt}
+\titlespacing*{\subsubsection}{0pt}{0pt}{0pt}
+
+% make \paragraph do newlines
+\makeatletter
+\renewcommand\paragraph{\@startsection{paragraph}{4}{\z@}
+ {-.75ex \@plus -1ex \@minus -0.2ex}
+ {0.01pt}
+ {\normalfont\normalsize\bfseries}
+}
+\makeatother
+
+%%% TOC changes %%%
+% inhibit "Contents" Head in TOC
+\makeatletter
+\renewcommand\tableofcontents{\@starttoc{toc}}
+\makeatother
+
+%make toc consider Chapter and section only.
+\setcounter{tocdepth}{3}
+
+% disable chapter, section, ... numbering
+\setcounter{secnumdepth}{-1}
+
+%%% /TOC changes %%%
+
+% make footnote numbering reset on every page.
+\usepackage[hang,flushmargin,perpage]{footmisc}
+%%%%% / Formatting %%%%%
+
+% includable git commit info
+\usepackage[missing=run\ build.sh\ or\ gitinfohook.sh]{gitinfo}
+
+% Fürs "last generated" Datum
+\usepackage[iso]{isodate}
+
+% Image import stuff
+\usepackage[absolute]{textpos}
+\usepackage{graphicx}
+\DeclareGraphicsExtensions{.pdf,.png,.jpg}
+
+% clickable references/links/...
+\usepackage{hyperref}
+
+% euro-sign
+\usepackage{eurosym}
+\DeclareUnicodeCharacter{20AC}{\euro}
+
+% frames
+\usepackage[framemethod=default]{mdframed}
+\newmdenv[linecolor=red,backgroundcolor=yellow]{yellowframe}
+
+% quotes
+\usepackage[babel,german=quotes]{csquotes}
+
+\usepackage{listings}
+\lstset{literate=%
+{Ö}{{\"O}}1
+{Ä}{{\"A}}1
+{Ü}{{\"U}}1
+{ß}{{\ss}}2
+{ü}{{\"u}}1
+{ä}{{\"a}}1
+{ö}{{\"o}}1
+}
+
+
+% START DOCUMENT
+\begin{document}\thispagestyle{empty}
+\hspace{50pt}
+\section*{Digital Forensics 188.922}
+\textbf{2014S}
+
+\section*{Assignment 4}
+\textbf{Phone}
+
+\section*{Jan Vales}
+\textbf{0726236\\\url{mailto:jan@jvales.net}}\\\\
+\textbf{Still want an official \LaTeX{} template!}\\
+
+\vspace{50pt}
+
+\section*{Table of Contents}\begin{footnotesize}\tableofcontents\end{footnotesize}
+\subsection*{Version}\begin{footnotesize}\url{http://git.somenet.org/?p=priv/jan/digfor.git}\\
+git clone \url{ssh://git@git.somenet.org:666/priv/jan/digfor}\\
+This is revision: \textbf{\gitAbbrevHash}. Document (.tex) compiled on: \textbf{\today}
+\end{footnotesize}\vspace{\fill}\newpage
+
+\input{content.tex}
+
+\end{document}
SomeNet / public repos / pub / jan / digfor.git / commitdiff