Skip to the main content

Polytechnic and design, Vol. 13 No. 2, 2025.

Professional paper

https://doi.org/10.19279/TVZ.PD.2025-13-2-19

SOLVING THE NIST HACKING CASE

Jan Lamza ; Zagreb University of Applied Sciences, Vrbik 8, 10000 Zagreb, Croatia, student *
Damir Delija ; Zagreb University of Applied Sciences, Vrbik 8, 10000 Zagreb, Croatia *

* Corresponding author.

Full text: english pdf 3.622 Kb

page 159-168

downloads: 78

cite

Abstract

The paper aims to present the resolution of a hacking case prepared by the National Institute of Standards and Technology (NIST) using the forensic tool Autopsy. A simulation of a real incident prepared by the National Institute of Standards and Technology is presented and is available to the public for learning and certification purposes. The case was discovered on September 20, 2004, when an Dell CPI laptop with serial number VLQLW, a wireless PCMCIA card and a home-made external 802.11b antenna was found. It is assumed that the computer was used for unauthorised access purposes, where suspect Greg Schardt (pseud. Mr. Evil) parked his vehicle within range of wireless access points (Starbucks, T-mobile Hotspot) and intercepted Internet traffic in an attempt to obtain credit card numbers, user names and passwords. This paper includes scenario analysis, identification of key clues and artifacts of the previously described scenario, using the free Autopsy tool. The work aims to prove by means of hard disk data analysis that Greg Schardt truly is a hacker under the pseudonym „Mr. Evil“.

Keywords

forensic analysis; Autopsy; incident simulation; hacking case

Hrčak ID:

344935

URI

https://hrcak.srce.hr/344935

Publication date:

21.10.2025.

Article data in other languages: croatian

Visits: 258 *