The expeditious improvement and advancement in technology have shaped computers as ammunition, which may lead to a huge loss if used for wrong motives. The objective of computer forensics involves correctly examine and collect the digital evidence in such a manner so that they are justifiable in court. Due to the growing importance of cyber world security and the sincerity of cybercrime, it is essential for security professionals to know the technology used in forensics and keyword searching is the most handful technique for identifying potential evidence from the pool of files. This paper aims to provide a proper understanding of regular expressions keyword search technique used in computer forensics investigation. In this paper, we perform the experiments using Prodiscover tool to reduce the search space by identifying and filtering the known files to speed up the searching process of evidence identification.

中文翻译：

---

正则表达式：搜索网络取证的实验方法

技术的飞速进步和进步使计算机变成了弹药，如果用于错误的动机，可能会导致巨大的损失。计算机取证的目的涉及正确检查和收集数字证据，以使其在法庭上具有正当性。由于网络世界安全的重要性日益增长，并且网络犯罪具有诚意，因此安全专业人员必须了解取证所使用的技术，而关键字搜索是从文件池中识别潜在证据的最实用技术。本文旨在提供对计算机取证调查中使用的正则表达式关键字搜索技术的正确理解。在本文中，