AD Lab: Reducing case backlogs through distributed processing and collaborative analysis.
AccessData Lab is a centralized investigative platform that enables division of labor, collaborative analysis, centralized case management and web-based review, thereby dramatically streamlining the investigative process. Furthermore, AD Lab enables distributed processing, allowing investigators to utilize additional hardware to dramatically increase their case processing and resolution speed.
Forensic Toolkit® (FTK®): Recognized around the World as the Standard Digital Forensic Investigation Solution.
FTK is a court-cited digital investigations platform built for speed, stability and ease of use. It provides comprehensive processing and indexing up front, so filtering and searching is faster than with any other product. This means you can “zero-in” on the relevant evidence quickly, dramatically increasing your analysis speed. Furthermore, because of its architecture, FTK can be setup for distributed processing and incorporate web-based case management and collaborative analysis.
Mobile Phone Examiner Plus (MPE+): Take control of your investigation and overcome the ever changing mobile device technology challenges.
Mobile Phone Examiner Plus (MPE+) is a stand-alone mobile device investigation solution that includes enhanced smart device acquisition and analysis capabilities. With a different approach to digital mobile forensics, MPE+ allows mobile forensic examiners to take control of the investigation by providing them with unique tools necessary to quickly collect, easily identify and effectively obtain the key data other solutions miss. MPE+ provides ANY organization with an integrated solution to address BYOD Risk, Big Data and Mobile Device Evidence, all in one tool.
nFIELD: Fast forensically sound mobile data acquisitions in just 5 simple steps and with virtually zero training
nFIELD provides fast, forensic mobile device data collections and triage with a simple to use interface and virtually zero training necessary. Users can perform logical and physical acquisitions of mobile devices along with UICC and mass storage devices; all in five simple steps. nFIELD can also be customized by an administrator to only allow the collection of certain types of user data, and even allow for the collection to be stored in a network mapped drive.
BlackLightâ„˘ represents the next generation in computer forensics. It was specifically designed to analyse iOS (iPhone and iPad), Mac OS X and Classic (OS 9) data, ensuring the highest levels of accuracy. BlackLightâ„˘ offers users an intuitive platform for carving, searching, analyzing and reporting Mac and iOS data within one application.
|Mobilyze is a mobile device triage tool, designed to give users
immediate access to data from Android and iOS devices. In the past,
backlogs of smartphones would pile up as agencies had to rely solely on
their investigators with specialized training. And then along came
Generate Evidence You Can Stand Behind
When speed and budget are just as mission-critical as mobile data itself, UFED 4PC extends Cellebrite’s trusted UFED software technology to any PC or laptop platform. Whether for rapid tactical response in the field, in-depth forensic examinations in a lab, UFED 4PC’s flexibility extends to meet user's needs, anywhere.
Without analytics, data is just data. In order to reduce case cycle times, investigators and analysts need simple, intuitive tools that help them see the big picture and all the critical connections that define it. UFED Analytics Desktop, designed as a standalone desktop application, allows an authorized investigator to rapidly explore various investigative paths or theories by opening multiple views of links and maps in one session, on multiple screens and narrow the data based on different case related values, if needed. It also helps them focus on specific data types related to all or specific suspects or victims and automatically generate timelines that contain a person’s activities.
Analytics Enterprise is also available as a multi user product.
Designed for 50 users or less, UFED Analytics Workgroup delivers a local client-server solution that efficiently and effectively manages hundreds of digital data sources.
Now more than ever, critical digital evidence resides beyond physical devices. Investigators need time-sensitive data from public or private user profiles hosted in cloud-based applications and services to solve cases, but find they are often frustratingly out of reach. Service providers often delay meeting subpoena demands for private information after a warrant is obtained, and manually scouring public data from social media and other cloud-hosted applications takes precious time investigators simply don’t have. Plus, analyzing such a huge volume of information from multiple sources can be a daunting task and found evidence may not even be admissible in court.
Access the details you need to discover relevant evidence and find new investigative paths within pre-approved legal boundaries. UFED Cloud Analyzer allows you to extract, preserve and analyze public domain and private social media data, instant messaging, file storage and other cloud-based content using a forensically sound process. Easily search, filter and sort data to quickly identify suspects, victims, locations and more.
As devices and the data they create become more embedded in our lives, the role they can play in investigations become more critical than ever. First responders and investigators need simple tools to gather real time intelligence and evidence in the field so it can inform next steps.
Cellebrite’s Field Series equips frontline personnel with intuitive, forensically sound tools to quickly access and triage digital evidence. Whether deployed in-car, on a rugged device or at a police station, border checkpoint or airport, field personnel can get actionable insights when minutes matter most. With only minimal training required, this permission-based solution allows authorized users to capture only the most relevant information, maintaining the integrity of the data while accelerating the investigation.
Additionally, reduce case backlogs on forensics labs and improve workflows for the people who need real data in real time. UFED InField has the power to change the way your team works, including the speed at which cases are solved.
Rugged Reliability for Field Operations
As mobile devices continue to play a critical role in criminal investigations, forensic investigators need to be prepared in every given situation.
This latest generation portable digital forensics platform brings comprehensive extraction capabilities anywhere they’re needed, whether in the lab, a remote location or in the field. Move faster, reduce backlogs, free up valuable hardware and produce defendable evidence with the Touch2.
Powerful and compact, the Touch2 is available with UFED Ultimate and comes with a forensic accessory kit. Extract data quickly and securely in a closed environment that is separate from other applications, eliminating any risk of cross-contaminating digital evidence. View call logs, images, videos and other key logical data directly from the Touch2 at the point of extraction for quick access to key evidence. With fast computing power and enhanced battery life, the Touch2 is a virtually maintenance-free, forensically sound extraction experience.
|Overcome sophisticated lock and encryption challenges with market-leading access and extraction capabilities.|
Mobile devices now play a critical role in criminal investigations, providing access to the digital footprints of a victim or suspect and revealing details hidden in messaging, location information and other system files that can lead to case breakthroughs. The race for digital evidence to prevent crimes, save lives, lead to arrests or secure convictions begins the moment a device is seized. Recovering a device, only to be stopped by a challenging lock or advanced encryption, can grind an investigation to a halt.
Backed by the industry’s largest and most accomplished research and development team, Cellebrite’s exclusive Unlock Services empower forensic practitioners to overcome sophisticated lock and encryption challenges with market-leading access and extraction capabilities. Available globally and performed either on premises or at a Cellebrite Lab, Unlock Services help you keep pace with the latest encryption methods to acquire digital intelligence quickly and keep investigations moving forward.
|The Black Hole Data Bag VECTOR Kit is designed to shield wireless devices from RF signals while being examined or charged. The Data Bag is an innovative solution that replaces the need for a hard-sided faraday enclosure. With the new VECTOR addition, capacitive touch screen devices can be operated directly with a finger or with the provided stylus. Touch screen device usage no longer requires extra components like foam pieces or cradles!|
|Perform the complete forensic analysis of encrypted user data stored in certain iPhone/iPad/iPod devices running any version of iOS. Elcomsoft iOS Forensic Toolkit allows eligible customers acquiring bit-to-bit images of devicesâ€™ file systems, extracting phone secrets (passcodes, passwords, and encryption keys) and decrypting the file system dump. Access to most information is provided in real-time.
Phone Password Breaker enables forensic access to password-protected backups for iPhone 2G, 3G, 3GS, iPhone 4, iPad, and iPod Touch 1st, 2nd, and 3rd Gen devices. The new tool recovers the original plain-text password that protects encrypted backups containing address books, call logs, SMS archives, calendars, camera snapshots, voice mail and email account settings, applications, Web browsing history and cache.
Do you create mobile phone hex dumps in forensic phone examinations?
Phone Image Carver is an easy to use sector by sector data carver for phone dumps or cell phone image files. Currently supports: Hex, DD, Bin, RAW, DMG (excluding BZip2 compression images).
Contact us if you need to add a format.
Easily recover more than 300+ file types using reliable automated file carving scripts.
The Detego® Unified Forensics Platform is a true end-to-end investigation suite for the acquisition, analysis and reporting of any digital assets.
Detego® Oxygen forms the extraction engine for mobiles, tablets and cloud based accounts within the Detego® Unified Forensics Platform, allowing you to easily access and acquire data from tens of thousands of mobile devices running on Android, Apple iOS, Windows, Bada, Blackberry, Chinese MTK, Symbian etc.
The SuperImager Plus 12: Rugged Field Unit- is a mobile, compact an extremely fast Forensic Imaging unit that can serve as a complete Field Computer Forensic Investigation platform. The unit is running under Linux Ubuntu 64 bit. The SuperImager application can preforms extremely fast E01 compression, and allows user to control the number of compression threads (up to 16 threads). Forensic imaging speed can reach up to 29GB/min, and Hash authentication speed can reach up to 31GB/min, when using SSD drives!
The unit can be used as a Field Forensic Imager, Cellphone data extractions and analysis, and Triage data collections.
The unit as Forensic Imager:
The SuperImager 7" Mini is very small, lightweight, and easy to carry, and it is the perfect tool to perform Forensic Imaging out in the field. It built with 7" Touchscreen color LCD display, 3 SATA ports (with secure and keyed SATA power connector), 4 USB3.0 ports, 1Gigabit Ethernet, and VGA port. It is affordable, and capable of performing extremely fast Forensic Imaging (Run SHA-1 hash authentication @ 30GB/min with use of Solid State Drive (SSD), 10GB/min with use of 1TB WD Blue Hard Disk Drive).
Rugged case, customized foam, shoulder carry strap, and with lid organizer and Accessories.
SuperWiper Desktop unit - Extremely fast (Average speed of 8.2GB/min with 8 WD 1TB Blue drives in parallel) data erases and formats unit. Built-in 8 SAS/SATA ports, 6 USB3.0 ports. The SuperWiper application runs under Linux - Ubuntu OS and supports DoD erase specification, Security Erase, Enhanced Security Erase protocols. The unit's application supports multiple session operations that can be used to erase multiple hard drives simultaneously and most efficient with very little downtime. Each erase session is independent of others. The application does generates detailed log files and erase certification that is compliance with NIST 800-88.
A best-of-breed solution dedicated to phone analytics
(Not distributed by Fulcrum Asia. For Singapore see I-analysis)
From the simplest requirements to the most complex. EnCase Forensic gives investigators the ability to image a drive and preserve it in a forensic manner using the EnCase evidence file format (LEF or E01), a digital evidence container vetted by courts worldwide.
EnCase® Mobile Investigator
More Apps. Most Devices. All Evidence.
A complete mobile forensics solution which works seamlessly with EnCase Forensic.
EnCase Mobile Investigator augments the mobile acquisition capabilities of EnCase Forensic with the ability to intuitively view, analyze, and report on critical mobile evidence that is relevant to their case. With mobile-first workflows, in-depth evidence analysis, and flexible report generation, investigators can feel confident in their results.
|Oxygen Forensic Analyst is a fully featured mobile forensic solution for data extraction and analysis. Extracts not only basic data but applications, passwords, geo data, web connection history etc. Offers analytical tools for device data analysis: Social Graph, Timeline, Aggregated Contacts etc. |
Oxygen Forensic® Detective Enterprise is a cost efficient solution for
big organizations with multiple local or remote workstations. This version has all Analyst
features. It includes Applications, Passwords, Deleted data recovery,
Timeline, Aggregated Contacts, Social Graph, Links and Stats, Search and
other features. One server with one USB dongle manages all connections. T
Oxygen Forensic® Kit is the complete ready-to-use and highly customizable mobile forensic solution for field and in-lab usage.
Designed for portability, Oxygen Forensic® Kit is a unique mobile solution. It can be your filed laboratory that is always at hand. No additional installation or settings are required. All you need to do is to switch Tablet PC on, choose a cable from the cable set, run Oxygen Forensic® Extractor and connect a device.
Cell phone forensics is not to be compared with traditional bit stream forensics. Cell phone data storage is proprietary, based on the manufacturer, model, and system. Cell Seizure was designed to allow forensic acquisition of user entered data and portions of unallocated storage on some devices.
The latest handheld forensics innovation from Paraben is the CSI Stick - THE portable cell phone forensic device.
Acquire and analyze data from over 2,200 mobile phones, PDAs, and GPS devices including iPhones.
Deployable Device Seizure (DDS) is a version of Device Seizure designed for use in the field. It is designed for one click acquisitions of basic cell phone data such as call logs, address book, SMS messages, etc. It also offers the ability to acquire full physical data from many cell phones. Deployable Device Seizure was designed from the ground up as a forensic grade tool.
Paraben's Device Seizure Field Kit is a completely portable handheld forensic solution. The kit includes everything you need to perform a comprehensive digital forensic analysis of over 2,200 cell phones, PDAs, and GPS devices anywhere, anytime. Better yet, you can use your Device Seizure dongle that comes in the kit on any lab machine making it more than just a field kit. Does your cell phone forensic solution have comprehensive analysis features? If not, it's probably not getting enough data from devices to warrant analysis.
Paraben's DS Lite is a Device Seizure and CSI Stick file viewing and analysis tool. With DS Lite, you can open Device Seizure files (.pds) and data acquired from Paraben's CSI Stick (.stk) for advanced analysis, file viewing, searching, and reporting. This allows any case agent or investigator to view and analyze data acquired by either CSI Stick or Device Seizure.
Acquire and analyse data from over 2,200 mobile phones, PDAs, and GPS devices including iPhones (2G, 3G, & 3Gs). Deleted data and user data such as text messages and images can often be found in a physical data dump of a phone. Device Seizure was designed from the ground up as a forensic grade tool that has been upheld in countless court cases.
Even with advanced forensic tools like Device Seizure, you never know when you'll run into a device that has no way of electronically processing the data. Project-a-Phone securely clamps your handheld device in place and delivers a clear video image of the screen to your computer, so you can show it on your monitor, display it through your projector, or share it on the Web. It provides easy access to the controls, while stabilizing your device, so you can run live demonstrations.
Project-a-Phone securely clamps your handheld device in place under a software-controlled camera that can take screen shots or video recordings of your phone screen. It also delivers a clear video image of the screen to your computer, so you can display live evidence on your monitor, through a projector, or over the Web. The ICD-5200 model boasts a resolution of up to 5.2 megapixels.