CN211718887U - Computer information evidence obtaining and analyzing system - Google Patents

Computer information evidence obtaining and analyzing system Download PDF

Info

Publication number
CN211718887U
CN211718887U CN202020354647.5U CN202020354647U CN211718887U CN 211718887 U CN211718887 U CN 211718887U CN 202020354647 U CN202020354647 U CN 202020354647U CN 211718887 U CN211718887 U CN 211718887U
Authority
CN
China
Prior art keywords
computer
analysis
processing module
transmission connection
analysis processing
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202020354647.5U
Other languages
Chinese (zh)
Inventor
孙春来
孙加佳
王永强
李褚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nanjing Shunji Electronic Technology Co ltd
Original Assignee
Nanjing Shunji Electronic Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nanjing Shunji Electronic Technology Co ltd filed Critical Nanjing Shunji Electronic Technology Co ltd
Priority to CN202020354647.5U priority Critical patent/CN211718887U/en
Application granted granted Critical
Publication of CN211718887U publication Critical patent/CN211718887U/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Debugging And Monitoring (AREA)

Abstract

The utility model discloses a belong to computer information evidence obtaining analysis technical field, specifically be a computer information evidence obtaining analysis system, including target computer and analysis end, still include the server, establish the connection through the server between target computer and the analysis end, the last computer memory that integrates of target computer, the memory port of target computer is connected with the memory port of computer memory, the analysis end includes collection receiving terminal, analysis processing module, display terminal, network database and local database, the electric both-way connection between collection receiving terminal and the analysis processing module, the output of analysis processing module and display end electric connection, the electric both-way connection between analysis processing module and network database and the local database, long-range data information acquisition to the target computer, improve the efficiency of obtaining information greatly, and the safety is higher; the data information of the target computer can be acquired in a one-to-many mode, and the use of manpower is reduced.

Description

Computer information evidence obtaining and analyzing system
Technical Field
The utility model relates to a computer information analysis technical field that obtains evidence specifically is a computer information analysis system that obtains evidence.
Background
The computer is commonly called as computer, is a modern electronic computing machine for high-speed computation, can perform numerical computation and logic computation, and also has the function of storage and memory. The intelligent electronic device can be operated according to a program, and can automatically process mass data at a high speed. A computer that is composed of a hardware system and a software system and does not have any software installed is called a bare metal.
With the continuous development of computer and network technologies, computer security incidents are increasing and are more and more influenced, and various electronic evidences of a computer system are collected, analyzed, confirmed, protected, extracted and filed in time, so that the technical problems of emergency response of the computer security incidents and the attack of the computer crime activities to be solved most urgently are formed. The computer evidence obtaining technology in China currently requires that technical personnel trained professionally arrive at the site, operate and check the computer system, disassemble the case and take out the storage medium, copy the storage medium by using special equipment such as a hard disk copying machine and the like to achieve the purpose of preserving the original evidence, and then analyze the computer system and the copied storage medium by using the evidence obtaining system, so that the efficiency is low.
SUMMERY OF THE UTILITY MODEL
An object of the utility model is to provide a computer information analysis system that obtains evidence, technical staff to solve the current computer technical requirement that obtains evidence that proposes in the above-mentioned background art through professional training reachs the scene, operation and inspection computer system, dismantle quick-witted case and take out storage medium, utilize professional equipment such as hard disk replicator to duplicate storage medium in order to reach the purpose of preserving original evidence, then recycle the storage medium after system analysis computer system that obtains evidence and the duplication, the lower problem of efficiency like this.
In order to achieve the above object, the utility model provides a following technical scheme: the utility model provides a computer information analysis system that obtains evidence, includes target computer and analysis end, still includes the server, establish through the server between target computer and the analysis end and connect, the last integration of target computer has computer memory, the memory port of target computer is connected with the memory port of computer memory, the analysis end is including gathering receiving terminal, analysis processing module, display terminal, network database and local database, gather electric property both way junction between receiving terminal and the analysis processing module, analysis processing module's output and display terminal electric connection, electric property both way junction between analysis processing module and network database and the local database, it is connected to establish between receiving terminal and the server to gather.
Preferably, the computer memory comprises a hard disk and a network cloud memory.
Preferably, the display end is a touch display end, and a speaker is integrated on the touch display end.
Preferably, the connection mode between the acquisition receiving end and the server is wired transmission connection or wireless transmission connection.
Preferably, the wireless transmission connection comprises a bluetooth transmission connection, a WiFi transmission connection, a GPRS transmission connection and a ZigBee transmission connection.
Compared with the prior art, the beneficial effects of the utility model are that:
1) the data information of the target computer is remotely acquired, so that the information acquisition efficiency is greatly improved, and the safety is high;
2) the data information of the target computer can be acquired in a one-to-many mode, and the use of manpower is reduced.
Drawings
FIG. 1 is a logic block diagram of the system of the present invention;
fig. 2 is a logic block diagram of the system of the analysis end of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be described clearly and completely with reference to the accompanying drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only some embodiments of the present invention, not all embodiments. Based on the embodiments in the present invention, all other embodiments obtained by a person skilled in the art without creative work belong to the protection scope of the present invention.
In the description of the present invention, it is to be understood that the terms "upper", "lower", "front", "rear", "left", "right", "top", "bottom", "inner", "outer", and the like indicate orientations or positional relationships based on the orientations or positional relationships shown in the drawings, and are only for convenience of description and simplicity of description, and do not indicate or imply that the device or element being referred to must have a particular orientation, be constructed and operated in a particular orientation, and therefore, should not be construed as limiting the present invention.
Example (b):
referring to fig. 1-2, the present invention provides a technical solution: the utility model provides a computer information analysis system that obtains evidence, includes target computer and analysis end, still includes the server, establish through the server between target computer and the analysis end and connect, the last integration of target computer has computer memory, the memory port of target computer is connected with the memory port of computer memory, the analysis end is including gathering receiving terminal, analysis processing module, display terminal, network database and local database, gather electric property both way junction between receiving terminal and the analysis processing module, analysis processing module's output and display terminal electric connection, electric property both way junction between analysis processing module and network database and the local database, it is connected to establish between receiving terminal and the server to gather.
Further, the computer memory comprises a hard disk and a network cloud memory.
Further, the display end is a touch display end, and a loudspeaker is integrated on the touch display end.
Furthermore, the connection mode between the acquisition receiving end and the server is wired transmission connection or wireless transmission connection.
Further, the wireless transmission connection comprises a Bluetooth transmission connection, a WiFi transmission connection, a GPRS transmission connection and a ZigBee transmission connection.
The working principle is as follows: an analysis processing module of an analysis end sends an instruction to acquire access permission to a target computer through a server, the analysis end shares a computer memory with the analysis end after obtaining the permission of the target computer, an acquisition receiving end of the analysis end acquires data information of the computer memory and outputs the data information to the analysis processing module, the analysis processing module analyzes and processes the acquired data (the specific analysis mode adopts the existing analysis method, and the detailed description is not needed in the prior art), the data analysis processing result is displayed through a display end, and the data analysis processing result is stored through a network database and a local database.
Having shown and described the basic principles and principal features of the invention and advantages thereof, it will be apparent to those skilled in the art that the invention is not limited to the details of the foregoing exemplary embodiments, but is capable of other specific forms without departing from the spirit or essential characteristics thereof; the present embodiments are therefore to be considered in all respects as illustrative and not restrictive, the scope of the invention being indicated by the appended claims rather than by the foregoing description, and all changes which come within the meaning and range of equivalency of the claims are therefore intended to be embraced therein, and any reference signs in the claims are not intended to be construed as limiting the claim concerned.
Although embodiments of the present invention have been shown and described, it will be appreciated by those skilled in the art that changes, modifications, substitutions and alterations can be made in these embodiments without departing from the principles and spirit of the invention, the scope of which is defined in the appended claims and their equivalents.

Claims (5)

1. A computer information evidence-obtaining analysis system comprises a target computer and an analysis end, and is characterized in that: the analysis terminal comprises a collection receiving terminal, an analysis processing module, a display terminal, a network database and a local database, wherein the collection receiving terminal is electrically connected with the analysis processing module, the output end of the analysis processing module is electrically connected with the display terminal, the analysis processing module is electrically connected with the network database and the local database, and the collection receiving terminal is connected with the server.
2. The computer information forensic analysis system according to claim 1 in which: the computer memory comprises a hard disk and a network cloud memory.
3. The computer information forensic analysis system according to claim 1 in which: the display end is a touch display end, and a loudspeaker is integrated on the touch display end.
4. The computer information forensic analysis system according to claim 1 in which: the connection mode between the acquisition receiving end and the server is wired transmission connection or wireless transmission connection.
5. The computer information forensic analysis system according to claim 4 in which: the wireless transmission connection comprises Bluetooth transmission connection, WiFi transmission connection, GPRS transmission connection and ZigBee transmission connection.
CN202020354647.5U 2020-03-19 2020-03-19 Computer information evidence obtaining and analyzing system Active CN211718887U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202020354647.5U CN211718887U (en) 2020-03-19 2020-03-19 Computer information evidence obtaining and analyzing system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202020354647.5U CN211718887U (en) 2020-03-19 2020-03-19 Computer information evidence obtaining and analyzing system

Publications (1)

Publication Number Publication Date
CN211718887U true CN211718887U (en) 2020-10-20

Family

ID=73396430

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202020354647.5U Active CN211718887U (en) 2020-03-19 2020-03-19 Computer information evidence obtaining and analyzing system

Country Status (1)

Country Link
CN (1) CN211718887U (en)

Similar Documents

Publication Publication Date Title
CN107566498A (en) A kind of method for monitoring numerical control machine and system based on Internet of Things
CN102932195B (en) A kind of business diagnosis method for supervising of protocal analysis Network Based and system
CN107454364B (en) Distributed real-time image acquisition and processing system in video monitoring field
CN108182218B (en) Video character recognition method and system based on geographic information system and electronic equipment
CN103324128B (en) Primary equipment fault warning comprehensive compression method in power dispatching automation system
CN111523527B (en) Special transport vehicle monitoring method and device, medium and electronic equipment
CN103645716B (en) Data processing method in a kind of transformer station back brake system and device
CN109634998A (en) A kind of traffic journey characteristic analysis platform based on mobile phone signaling big data
CN106646110A (en) Low-voltage distribution network fault positioning system based on GIS and Petri technologies
CN113554360A (en) Power transmission line running state visual management method and system and storage medium
CN111131482A (en) Intelligent monitoring closed-loop operation and maintenance system based on BIM three-terminal synchronous equipment
CN106649765A (en) Smart power grid panoramic data analysis method based on big data technology
CN211718887U (en) Computer information evidence obtaining and analyzing system
CN105784937B (en) The data visualization method and system of gas benzene homologues detection
CN110232643A (en) A kind of full life monitoring device and method of building castoff
CN104850484A (en) Bitmap analysis based automatic determination method for character terminal interactive state
CN113824722A (en) Network security dynamic early warning system based on knowledge graph
CN113139759A (en) Power grid data asset management method and system
CN210578661U (en) Low-power-consumption geological disaster big data monitoring system
CN113691390A (en) Cloud-end-coordinated edge node alarm system and method
CN113259346A (en) Situation awareness system for network security
CN113542070A (en) Thermal data extraction method based on use frequency
CN112087436A (en) Monitoring system for information network engineering supervision
CN205430485U (en) Intelligence video monitoring platform
CN205300647U (en) Water conservancy monitoring devices based on camera and GNSS

Legal Events

Date Code Title Description
GR01 Patent grant
GR01 Patent grant