Requirements

The general requirements for installing the virtual machine (VM), which is based on the Kali Linux VM, on your Mac/Windows/Linux computing platform are:

• Disk: 8GB min - 16GB
• RAM: 4GB free minimum
• Processor: Dual Core Laptop Processor

Overview

There are three sets of instructions:

1. Installing the Main VM - for Assignments 4, 5, and 6
2. Installing the Forensics VM - for Assignment 6
3. Linking the Forensics VM Virtual Disk on the Main VM - for Assignment 6

Screenshots are provided to help guide you through the installation process.

Installing the Main VM

1. Download and install VirtualBox (https://www.virtualbox.org/wiki/Downloads). Select the appropriate platform under VirtualBox platform packages.
2. Download the OVA (open virtualization appliance) COS 432 VM Distribution.ova from https://drive.google.com/open?id=1-kT7_CBCBjLWxu_bv4e7Oe2Kwd0hN3FI (about 2.5GB)
3. Open VirtualBox
   
4. Click File and then Import Appliance... Click the Folder icon
   
5. Select the COS 432 VM Distribution.ova you previously downloaded. Note - you may have to nagiviate to the proper folder
   
6. Click Continue (or Next)
   
7. Click Import
   
8. Wait for the import to complete (this may take a few minutes)
   
9. Select COS 432 VM Distribution
   
10. Click Start
    - this will boot the VM, which takes a few minutes
    
11. After the VM has successfully booted, you will see the following desktop
    
12. The user account is: cos432 and the password is: princeton
13. To shutdown the VM, first close the window (by clicking on the x). When prompted, select Power off machine and click OK
    

Installing the Forensics VM

1. Download the OVA (open virtualization appliance) Forensics Release F2018.ova from https://goo.gl/kmPYmQ (about 4GB)
2. Follow the same steps that you used to install the Main VM. However select the Forensics Release F2018.ova you previously downloaded, instead of the COS 432 VM Distribution.ova. Note - you may have to nagiviate to the proper folder
   

Linking the Forensics VM Virtual Disk on the Main VM

1. Open VirtualBox and select the COS 432 VM Distribution
   
2. Click Settings
   
3. Click Storage
   
4. Click the SATA Controller
   
5. Click the Add Hard Disk icon
   
6. Click Choose Existing Disk
   
7. Select the virtual machine disk (vmdk) you would like to analyze, i.e., the suspect’s imported virtual disk (which can be found in ~/VirtualBox/VMs/Forensics Release F2018) Click Open
   
8. Verify the correct virtual machine disk was added. Click Open
   
9. Start the COS 432 Distribution VM and open a terminal
   
10. Run sudo fdisk -l
    
11. Verify the second disk is displayed (/dev/sdb)
    
12. Attempt to mount a disk partition (sudo mount /dev/sdb1 /mnt)
    
13. View the contents (ls /mnt)