Abstract The fields of digital forensics and incident response have seen significant growth over the last decade due to the increasing threats faced by organizations and the continued reliance on digital platforms and devices by criminals. This rise has coincided with a significant and continued increase in the size, complexity, and number of digital forensic investigations that must be performed. In the past, such investigations were performed manually by expert investigators, but this approach is no longer viable given the amount of data that must be processed compared to the relatively small number of trained investigators. These resource constraints have led to the development and reliance on automated processing and analysis systems for digital evidence. Given the central role that such evidence plays in securing organizations and nations against attacks as well as in criminal and civil legal proceedings, it is necessary that such systems are developed in a robust and reliable manner. In this paper, we present our effort to develop a stress testing platform specifically tailored to assess the robustness and reliability of digital forensics tools. For our initial testing, we chose to target The Sleuth Kit framework given its prominence as both as a standalone tool as well as a programming library that is utilized by a large number of open source and commercial filesystem analysis systems. The results of our efforts were the automated discovery of many critical programming errors in The Sleuth Kit framework.

中文翻译：

---

Gaslight 重温：高效且强大的数字取证工具模糊测试

摘要 由于组织面临的威胁日益增加以及犯罪分子对数字平台和设备的持续依赖，数字取证和事件响应领域在过去十年中出现了显着增长。这一增长与必须执行的数字取证调查的规模、复杂性和数量的显着和持续增加相吻合。过去，此类调查由专家调查员手动进行，但鉴于必须处理的数据量与训练有素的调查员数量相对较少相比，这种方法不再可行。这些资源限制导致了对数字证据的自动化处理和分析系统的开发和依赖。鉴于此类证据在保护组织和国家免受攻击以及刑事和民事法律诉讼中发挥的核心作用，有必要以稳健可靠的方式开发此类系统。在本文中，我们介绍了我们为开发专门为评估数字取证工具的稳健性和可靠性而量身定制的压力测试平台所做的努力。对于我们的初始测试，我们选择以 The Sleuth Kit 框架为目标，因为它既可以作为独立工具，也可以作为被大量开源和商业文件系统分析系统使用的编程库。我们努力的结果是自动发现了 The Sleuth Kit 框架中的许多关键编程错误。有必要以稳健可靠的方式开发此类系统。在本文中，我们介绍了我们为开发专门为评估数字取证工具的稳健性和可靠性而量身定制的压力测试平台所做的努力。对于我们的初始测试，我们选择以 The Sleuth Kit 框架为目标，因为它既可以作为独立工具，也可以作为被大量开源和商业文件系统分析系统使用的编程库。我们努力的结果是自动发现了 The Sleuth Kit 框架中的许多关键编程错误。有必要以稳健可靠的方式开发此类系统。在本文中，我们介绍了我们为开发专门为评估数字取证工具的稳健性和可靠性而量身定制的压力测试平台所做的努力。对于我们的初始测试，我们选择以 The Sleuth Kit 框架为目标，因为它既可以作为独立工具，也可以作为被大量开源和商业文件系统分析系统使用的编程库。我们努力的结果是自动发现了 The Sleuth Kit 框架中的许多关键编程错误。我们选择以 The Sleuth Kit 框架为目标，因为它既是独立工具，也是被大量开源和商业文件系统分析系统使用的编程库。我们努力的结果是自动发现了 The Sleuth Kit 框架中的许多关键编程错误。我们选择以 The Sleuth Kit 框架为目标，因为它既是独立工具，也是被大量开源和商业文件系统分析系统使用的编程库。我们努力的结果是自动发现了 The Sleuth Kit 框架中的许多关键编程错误。