The State of the art tools and techniques for remote digital forensic investigations

Remote forensic techniques are widely searched in these days for its response capability in providing a way to perform evaluation of potentially compromised devices without physically accessing them. Discreet internal investigations are possible in remote forensics without the knowledge of the system owner. The need for eliminating the cost and time delays involved in delivering digital forensic capabilities to remote locations all around the world is profoundly increasing. This paper analyses various methodologies currently in force for remote forensic investigation. Different state of the art software and hardware tools and techniques are compared for performing different stages of investigation. Comparison tables presented for the understanding of merits, demerits, challenges and opportunities involved in those techniques. The overall intent of this paper is to perform comparative analysis based on qualitative outputs observed from memory, timeline and live forensics imaging on an incident that can simplify the process of finding out more appropriate technique under varying circumstances for effective remote forensic investigation.