Split File

When we conduct forensic certainly not difficult if the data is only small, but it would be a difficult thing if the file has a fantastic size eg file 1000Gb in size while we have the hard drive of the same size is 500GB + 500GB, so we have 2 of the same hard drive will be a combined total 1000Gb, of course the file must displit, which means the file will be split into multiple parts without changing the contents of the file, the first thing we should do is perform hashing on the file named able2.dd the size 329.8Mb

write the command in terminal
# md5sum able2.dd

why do these commands? Because it is a proof, that the contents of the files you have not been hashing hashing and will not change.

Looks hashing results show the contents of the file able2.dd = 02b2d6fc742895fa4af9fa566240b880

Now we're going to split the file able2.dd, type the command in your terminal.

# split-d-b 100m able2.dd able2.split.

Now observe the result typing ls command in your terminal

# ls

observe the picture above, and note the name of the file that I block, able2.split.00, able2.split.01, able2.split.02, and able2.split.03, split the command above has been made ​​of the original file size divided 329.8Mb into 4 files, 3 files first 100Mb in size, while the fourth has a file size of 29.8Mb,

now to prove that the file is after the split does not change the contents of the file, we do hashing, type this command in your terminal

# cat able2.split. * | Md5sum

Ok, the result was the same, good try and good luck.