Digital Evidence Investigator PRO enables front line field investigators to quickly create a forensic backup of an iOS device on-scene or back in the lab. In this short video, ADF Digital Forensic Specialist, Rich Frawley, will show you how to easily backup an iOS device with DEI PRO.
Last year, Endgame released an open source benchmark dataset called EMBER ( Endgame Malware BEnchmark for Research ). EMBER contains 1.1 million portable executable (PE file) sha256 hashes scanned in or before 2017, features extracted from those PE files, a benchmark model, and a code repository that makes it easy to work with this data. Since then, researchers have been able to use this dataset to quantify how quickly models degrade , investigate how labels evolve over time , and even to investigate how malware classifiers are vulnerable to attack . We were very pleased to see this response from the community, but were also aware of a couple areas where we thought EMBER could improve.
MOBILedit is one of the first phone forensic tools, and since 1996 has played an important role in the industry. Now we have released a big version 7.0, moving phone forensics forward. As an expert in the field you shouldn't miss this event.
New MOBILedit Forensic Express comes with a better user experience, better reports, better phone unlocking, is faster and brings great new features. If you are not using MOBILedit Forensic Express yet, request a demo here .
According to feedback from our customers, here's what they like the most about MOBILedit Forensic Express:
Highest number of supported apps and best in getting data from messengers and other apps
Fast updates with Live Updates plus on-demand application analysis
Great in recovering deleted data
Best reports, especially PDF, easily understandable to whoever reads them
Ease of use, requires minimum learning
Fast, concurrent processing of many devices
Now supporting the WhatsApp Business app
Following customer demand, we are pleased to provide support for the popular WhatsApp Business App on iOS and Android devices. Gain access to contacts, calls and call logs, chat messages, deleted data and more.
A preview version of X-Ways Forensics 19.9 is now available. The download link can be retrieved as always by querying one's license status .
What's new in v19.9 Preview 2?
* Same fix level as v19.8 SR-7.
* Project Vic categories for the USA are now predefined in the user-editable text file PVicCat.txt. Law enforcement users from UK and Canada can download their own definitions from the PhotoDNA download section on our web server and replace the default PVicCat.txt file in their installations. Users in other countries with differing categories can gladly share them with us.
* No longer makes copies of files with a size of 0 bytes for the case report.
* Generation of gallery and report thumbnails for non-picture files with or without shrinking possible now in the latest versions of Windows 10 (1809 and 1903).
* Improved ability to abort potentially slow gallery build up by switching to another mode.
* Shows another line item in the directory browser even when a horizontal scrollbar is present that obscures it partially.
* Ability to display fractions of seconds in timestamps more precisely. More than 3 decimals are now supported depending on the precision of the original timestamp format and depending on where the timestamps are stored. (Timestamps in the volume snapshot are displayed with up to 4 decimals, where the 4th digit is rounded.) In previous versions the higher precision was already employed for sorting, even if not displayed.
* Improved extraction of metadata from MSG files.
* Extraction of original filenames from old style INFO2 recycle bin files.
Editor’s note: The SalvationDATA experts have been extremely busy last month for preparing the new release of our CCTV DVR forensic software. Now we are pride to announce that VIP 2.0(Video Investigation Portable) the best-selling DVR forensics solutions of SalvationDATA released now! The new release includes the optimized interface and many significantly improved capabilities can help investigators, examiners and other users to work faster, smarter and more efficiently. All these improvements make VIP2.0 The Sophisticated Video Evidence Capturer!
Passware Kit 2019 v3 instantly decrypts LUKS volumes via live memory analysis, extracts passwords and other data from macOS High Sierra keychains, and is twice as fast in recovering iTunes backup passwords on GPU than previous versions.
The new version also recovers original passwords for QuickBooks databases to provide access to sensitive data fields. Instant password reset is also supported.
The Nuix July 2019 software release is a bit bigger, especially for our investigations customers, than just a set of features and functionality. While there are plenty of those to talk about , it’s one change that underscores our commitment to providing the very best software on the market to help investigators to do their work better.
We’d like to introduce Nuix Investigate !
No, we haven’t built a brand-new product. What we’ve done is taken a long, hard look at our software portfolio and formalized what we’ve long known—namely, how perfect the software we used to call Nuix Web Review & Analytics is as a tool for a variety of investigations use cases.
TOUCHME , in its basic operation is designed to operate similar to the linux touch program which will update the file date/times to current date/time.
With the latest release of Magnet AXIOM, we’ve brought a host of new features that will help reduce the stress on examiners exposed to disturbing materials—particularly CSAM.
Get Magnet AXIOM 3.4 within AXIOM or as a download over at the Customer Portal today to utilize these new Officer Wellness features as well as a number of new updates that are making Mac investigations faster and more robust.
Good News! Kernel has released a brand-new tool for Office 365 migrations between two tenants. The tool can migrate archive mailboxes, shared mailboxes, public folders and Office 365 groups. It incorporates various filtering options for moving the required data only. It also has CSV file option for bulk migration of mailboxes. Along with Office 365, the tool supports on-premises and hosted Exchange environments as well for migration.
We have released the first version of SQLite Examiner , a free tool for viewing SQLite databases. SQLite Examiner includes standard features such as viewing data per table and writing custom SQL queries.
This release of NetAnalysis® adds support for the new Microsoft Edge (Chromium) browser , which has been released in Dev and Canary versions; we have also added support for the new Opera GX gaming browser as well as adding support for fifty-eight other browsers.
We have added support for the following new browsers:
In December 2018, Microsoft announced their intention to adopt the Chromium open source project in the development of their Microsoft Edge browser . As of July 2019, they have released Developer and Canary editions . Microsoft Edge is currently available for