Digital validation
MetaScope
Fraud identification, digital document validation, and technical report generation.
Free technical ebook
Forensic Tools Manual
A practical guide with tutorials, workflows, and examples for applying tools such as Autopsy, Maltego, IPED, ExifTool, SIFT, Recuva, and MetaScope in digital investigations.
Material developed from literature review and hands-on experimentation conducted by GEPID members, with validation in laboratory and controlled virtual environments.
Ebook
Forensic Tools Applied to Cyber Investigations
Step-by-step tutorials
Simulated case studies
Replicable laboratory workflows
Focused on digital forensics, cyber investigations, and security auditing.
Laboratory validated
The documented tools were tested in controlled environments to prioritize reliability and practical applicability.
Technical and didactic language
The manual connects concepts, installation, configuration, usage, and result interpretation.
Focused on forensic practice
The content was structured to support study, training, and consultation in digital investigations.
Inside the manual
What you will find in the ebook
The material was designed as a practical reference for readers who need to move beyond generic tool descriptions and understand how each tool fits into a real analysis workflow.
Conceptual description of each tool and its role in digital investigations.
Installation, configuration, and practical use in controlled environments.
Replicable workflows for study, training, and professional application.
Simulated case studies connecting theory, tools, and technical decision-making.
Covered tools
From collection to digital evidence analysis
The selection brings together established tools and resources for document validation, metadata, recovery, OSINT, and evidence processing.
Metadata
ExifTool
Reading, editing, and removing metadata from digital files.
OSINT
Maltego CE
Relationship analysis, data mining, and open-source investigation.
Images and disks
Autopsy
Analysis of disks, device images, deleted files, and file systems.
Recovery
Recuva
Recovery of deleted files in controlled study and triage scenarios.
Forensic environment
SIFT Workstation
Linux distribution for digital forensics and incident response.
Processing
IPED
Indexing, processing, and organizing large sets of digital evidence.
Who it is for
A technical material for reference and training
The manual does not replace institutional protocols or specialized training. It organizes the starting point: tools, procedures, precautions, and examples for applied study.
Forensic experts, technical assistants, and professionals who work with digital evidence.
Students of forensics, information security, computing, and cyber investigations.
Legal, compliance, and audit professionals who need to understand digital evidence.
Teachers, researchers, and study groups interested in applied forensic tools.
Technical origin
Developed from review and hands-on experimentation
The ebook emerged in the context of the Digital Forensics and Investigations Study Group, combining literature review, triage of tools used in cyber investigations and security audits, laboratory testing, and didactic chapter structure.
Technical coordination
Tales Giuliano Vieira
Forensic expert, professor, and researcher in digital forensics and investigations.
Study group
GEPID
A group dedicated to applied digital forensics and investigations.
Application
Cyber investigation
Tools tested for study, triage, and technical analysis.
Frequently asked questions
Is the manual free?
Yes. The ebook was planned as a free technical resource to support study, training, and initial consultation on digital forensics tools.
Is the material for beginners or professionals?
The structure is didactic but practical. It serves students, professionals in training, and teams that need quick guides for established tools.
Do the examples use real cases?
The material uses practical case studies and simulated scenarios, preserving security, privacy, and methodological control.
Does the manual replace an official forensic examination?
No. The ebook is educational and technical material. Critical cases must follow institutional protocols, chain of custody, and qualified professional assessment.
Download the technical manual for free
Use the ebook as an initial reference to study forensic tools, build test environments, and understand practical digital investigation workflows.