Validating with Digital Forensics Tools
ProDiscover
– .eve files contain metadata that includes a hash value
– Has a preference you can enable for using the Auto Verify Image Checksum feature when image files are loaded
– If the Auto Verify Image Checksum and the hashes in the .eve file’s metadata don’t match
ProDiscover will notify that the acquisition is corrupt and can’t be considered reliable evidence.