In digital forensics, demonstrating attribution—using operating system artifacts to prove that the suspect had knowledge of the document or image files found on a device—is one of the key elements of building a case. The ability to tell an evidentiary story is even better. How did a file get here? Where did it go—to whom … Continued
Our previous two blogs covered the reasons why we think file system forensics’ marginal returns are rapidly diminishing, and the changes in consumer electronics that continue to drive the need for a focus on artifacts and the apps they come from in digital forensics. In our final post, we’re discussing how the artifacts-oriented approach allows … Continued
The latest version of Magnet AXIOM is ready for customers to download either at the Customer Portal or when you open AXIOM. Magnet AXIOM 1.2.6 brings improvements to Cloud acquisition — including support for Google Hangouts — as well as an update to our Passware integration that uses a password dictionary list to attempt to … Continued
Our previous blog covered the reasons why we think file system forensics’ marginal returns are rapidly diminishing, and why we think the process needs to be balanced with a more efficient, artifacts-oriented approach that relies on the file system to verify and validate. In this blog, we offer the historical context for how we think … Continued
Digital forensics has relied on the file system for as long as hard drives have existed. The structures associated with File Allocation Tables (FAT), the New Technology File System (NTFS), Extended File System (EXT), and other file systems—as well as the partitions within—could be mined for file metadata, carved for deleted files, and accessed to … Continued
Coming to London, Paris, and Düsseldorf this April: the Magnet User Summit — your opportunity to attend in-depth lectures and a hands-on lab for the recovery, analysis, and reporting of digital evidence, and to network with our experts and your peers who work in mobile and computer forensics. Visit our Magnet User Summit site for … Continued
Samsung devices are one of the most popular device types on the most popular mobile operating system, Android. In the case of a recent examination, a Samsung was giving me a lot of trouble. It was a Verizon Samsung Galaxy S7, SM-G930V. This phone was released running Android version 6, or Marshmallow, and upgradable to … Continued
We’re proud to introduce a new course for people who are looking to expand the capabilities of their computer forensics investigations: Magnet AXIOM Advanced Computer Forensics (AX250). This is an expert-level four-day training course. It is designed for participants who are somewhat familiar with the principles of digital forensics and are seeking to expand their … Continued
Update: An updated version of this release is now available as Magnet AXIOM 1.2.5. Magnet AXIOM 1.2.4 is now available for customers to download in the Customer Portal. With the latest release of AXIOM, we’re bringing new capabilities to bypass Android passwords, full Cloud token integration, McAfee Decryption, and more. Mobile Acquisition Improvements With AXIOM … Continued
Magnet AXIOM supports many different services and platforms in its cloud product from Google, Microsoft, Facebook, Twitter, Dropbox, and many more. We also include a generic POP/IMAP connector to allow examiners to pull additional email services not explicitly included in the regular cloud providers. As long as the webmail provider supports either POP or IMAP, … Continued
