With the rapid growth of big data, representing heterogeneous data and providing predictive analytics solutions from the massive amount of data are challenging tasks. From the abundance of information collection, exploring and acquiring the information that is relevant to the criminal activity at the time of investigation is an inefficient task. Hence, to improve the performance of big data forensics, managing the big database logs is crucial, which leads the case-specific investigation.