Release notes March 2018 Oxygen Forensic Detective v. 10 · 2019-08-29 · Oxygen Forensic®...
2
Oxygen Forensic ® Detective v. 10.1 Release notes March 2018 Star�ng from September 2017, Oxygen Forensic® Detec�ve acquires data from drone storages and mobile drone apps. But some drone data is transmi�ed and stored in the user’s online account, the drone manufacturer’s cloud, or in both loca�ons. The addi�onal data within the cloud represents a separate challenge for an expert since manual extrac�on can be complicated or impossible for various reasons. Oxygen Forensic® Detec�ve 10.1 allows experts to access the drone cloud via password or token and extract lots of valuable data: • Account details: user name, photo, bio, website, country, date of account crea�on and social networks linked to this account. • Drone informa�on: model, total flight �me, distance, and number of flights, countries where it flied, maximum speed, al�tude, distance, and dura�on of flights, etc. • Flight details: history with geo data, �me stamps, speed, al�tude, etc. In January 2018, Oxygen Forensics and Project VIC partnered to help fight children exploita�on. Now, forensic experts can upload the Project VIC hash sets library much faster than in any other compe�ng tool and search child abuse media in mobile and cloud extrac�ons. They can also export extrac�on informa�on to a JSON file compa�ble with Project VIC. To use this func�onality, an expert should have a license of Oxygen Forensic® Detec�ve and an access to the Project VIC hash sets library. Once Oxygen Forensic® Detec�ve extracts data from a mobile device or a cloud account, an inves�gator can go to Search sec�on, upload Project VIC hash sets, and click the Search Files bu�on. Any images found to be suspicious will be copied to the Project VIC sec�on in Oxygen Forensic® Detec�ve and classified in accordance with the Project VIC Classifica�on Standard. Forensic experts can generate a report with the iden�fied illegal content to PDF, RTF, XLS, XML, and other formats. ACCESS TO DJI DRONE CLOUD INTEGRATION WITH PROJECT VIC Oxygen Forensics, Inc 901 N. Pitt St, Suite 100 Alexandria, VA 22314 Tel.: 844 537-2537 Fax : 877 462-2134
Transcript of Release notes March 2018 Oxygen Forensic Detective v. 10 · 2019-08-29 · Oxygen Forensic®...
Oxygen Forensic® Detective v. 10.1Release notes March 2018
Star�ng from September 2017, Oxygen Forensic® Detec�ve acquires data from drone storages and mobile drone apps. But some drone data is transmi�ed and stored in the user’s online account, the drone manufacturer’s cloud, or in both loca�ons. The addi�onal data within the cloud represents a separate challenge for an expert since manual extrac�on can be complicated or impossible for various reasons. Oxygen Forensic® Detec�ve 10.1 allows experts to access the drone cloud via password or token and extract lots of valuable data:
• Account details: user name, photo, bio, website, country, date of account crea�on and social networks linked to this account.• Drone informa�on: model, total flight �me, distance, and number of flights, countries where it flied, maximum speed, al�tude, distance, and dura�on of flights, etc.• Flight details: history with geo data, �me stamps, speed, al�tude, etc.
In January 2018, Oxygen Forensics and Project VIC partnered to help fight children exploita�on. Now, forensic experts can upload the Project VIC hash sets library much faster than in any other compe�ng tool and search child abuse media in mobile and cloud extrac�ons. They can also export extrac�on informa�on to a JSON file compa�ble with Project VIC.
To use this func�onality, an expert should have a license of Oxygen Forensic® Detec�ve and an access to the Project VIC hash sets library. Once Oxygen Forensic® Detec�ve extracts data from a mobile device or a cloud account, an inves�gator can go to Search sec�on, upload Project VIC hash sets, and click the Search Files bu�on. Any images found to be suspicious will be copied to the Project VIC sec�on in Oxygen Forensic® Detec�ve and classified in accordance with the Project VIC Classifica�on Standard. Forensic experts can generate a report with the iden�fied illegal content to PDF, RTF, XLS, XML, and other formats.
ACCESS TO DJI DRONE CLOUD INTEGRATION WITH PROJECT VIC
Oxygen Forensics, Inc 901 N. Pitt St, Suite 100 Alexandria, VA 22314Tel.: 844 537-2537 Fax : 877 462-2134
We’ve significantly improved data extrac�on from Twi�er cloud account. 2FA support and authoriza�on via token are now available for this popular social network. The updated Oxygen Forensic® Cloud Extractor allows forensic experts to acquire addi�onal data: private messages, blocked and ignored users, tweet loca�ons, lists, moments, all available a�achments, etc.
Oxygen Forensic® Detec�ve 10.1 comes with the unique feature that helps to decrypt WhatsApp iCloud or Google backup via token. If a key file that is required for backup decryp�on cannot be obtained, but there is a WhatsApp authen�ca�on token, Oxygen Forensic® Detec�ve can use it (leaving no digital traces) to decrypt backups stored within the iCloud and Google Cloud services.
The updated Oxygen Forensic® Detec�ve 10.1 introduces data parsing and decryp�on from several popular cryptocurrency apps installed in Apple iOS and Android devices. With the new version forensic inves�gators can extract and decode valuable data from BreadWallet and Jaxx Blockchain Wallet apps: account details, wallet and transac�ons details and cache.
WHATSAPP BACKUP DECRYPTION
CRYPTOCURRENCY APPS PARSING
TWITTER DATA EXTRACTION
Oxygen Forensics, Inc 901 N. Pitt St, Suite 100 Alexandria, VA 22314Tel.: 844 537-2537 Fax : 877 462-2134
Oxygen Forensic® Detective v. 10.1March 2018Release notes
APPLICATIONS420+ unique apps6200+ apps versions
NEWIOSJaxx Blockchain Wallet (1.3.9)Health (9.3.3)LetGo (1.22.3)
ANDROID BreadWallet (171)Jaxx Blockchain Wallet (1.3.7)
WINDOWS PHONEWeChat (6.0.8.17)
UPDATED IOSFacebook Messenger (153.0)Google Translate (5.17.0)Instagram (32.0)LinkedIn (9.1.64)Skype (8.15)Twi�er (7.17.1Viber (8.2.1)WhatsApp (2.18.22)
ANDROID Facebook (159.0.0.38.95)Instagram (32.0)Kik (12.4.1.19850)Line (8.2.1)Twi�er (7.32.0)Yahoo Mail (5.24.7) Youtube (13.05.52)And many more!
CLOUDS46 cloud services
NEWDJI drone
UPDATEDDropboxTwi�erWhatsApp
NEW ANDROID ROOTING EXPLOITAdded a new roo�ng method based on DirtyCOW exploit for devices with Android OS up to v. 6.0. Moreover, now forensic experts can select the root exploit for an Android device from the list of available exploits.
SUPPORT FOR GPX FORMATNow Oxygen Forensic® Maps module offers import and visualiza�on of geo coordinates in GPX format. This format is widely used by mobile applica�ons to store informa�on about waypoints, tracks, and routes.
SEARCH BY HASH SETSAdded the ability to search files by hash sets (MD5, SHA1, SHA256). Now forensic experts can quickly find illegal files by uploading hash sets.
