New Features

Magnet Axiom and Axiom Cyber quarterly update 

With the recent Magnet Axiom and Axiom Cyber 9.0 releases we added several new and exciting capabilities. In the short time since that release, we’ve continued to roll out updates refining and iterating on those features. In addition to continually expanding and updating the artifact support to help provide insights from the latest apps and services for your investigations, here are a few highlights from our releases since Axiom 9.0: 

  • New Timeline card in Event Snapshot to identify spikes in activity around the time of an incident 
  • Improvements to the integration of evidence sharing between Axiom and Magnet Review 
  • Simplifying the workflow for Magnet Griffeye Case creation from Axiom Examine 
  • Updated and expanded artifact coverage for Magnet Axiom  
  • Exclusive to Axiom Cyber, the new IOC Insights Dashboard for a unified view of critical cyberattack threat data 

If you missed the Axiom and Axiom Cyber 9.0 release, check out the release blogs linked here or our on-demand webinar Streamlined mobile workflows with Magnet Axiom 9.0.  

Updated artifact coverage in Axiom 

A big part of Axiom’s benefit is the continual delivery of valuable artifact support in our frequent releases. The artifact team are constantly exploring new applications to ensure you’re getting the latest artifacts that can be the difference-maker in your cases. This also means ensuring our existing artifacts remain up to date with any changes and updates that occur over time. 

With the prominence of mobile data and messaging applications in investigations, communications evidence is a critical source of information for understanding the events leading up to and following an incident. This information can provide important context to support or refute claims in legal proceedings. Since the release of Axiom 9.0, we haven’t slowed down our artifact coverage, adding and updating a range of useful artifacts, including these important messaging applications:  

  • Signal: Updated support to capture more complete user and group member data, and contact card data for messages sent over the iOS version of this encrypted communications app. Also includes updated support for contact card data, group messages, stories, story attachments, and location data for shared location data messages on Android devices. 
  • Slack: Added support for desktop instances of Slack as well as parsing for the disk cache which is used to store frequently accessed data including messages and files 
  • Snapchat: Updated support enhancing the capabilities to examine the metadata of files sent over Snapchat 
  • Microsoft Teams: Added support for calendar data in Teams as well as refined support for messages and conversations sent using Android devices 
  • Theema Messages: Added support for messages and attachments sent using this paid, secure messaging application 
  • Facebook messenger: Added support for the chat threads of system messages 
  • Line Messages: Updated support for group chats and system messages on iOS devices 

Our commitment to the importance of artifacts is exemplified in Chad Gish’s great blog series That One Artifact, which examines cases from Chad’s impressive career in Nashville, where one critical piece of evidence provided the turning point that opened up the case and helped serve justice.  

Expanding the available data options in Event Snapshots  

To help both you and your stakeholders save time and collaborate efficiently, we added a patent-pending interface into Axiom, Event Snapshots, that helps focus investigations on the most relevant digital events surrounding an incident. Since it’s initial release we have expanded the options in Event Snapshots with a new card providing a Timeline view of events on a device, which helps quickly identify spikes in activity. 

To learn more and see Event Snapshots and the new Timeline card in action, visit our blog: Focus your investigations with Event Snapshots in Magnet Axiom or explore the demo below: 

* included with all term licenses of Axiom   

Improving evidence sharing between Axiom and Magnet Review 

We have continued to refine the recently added ability to automatically share evidence to a cloud-based Magnet Review account from Axiom Process, as it is being processed. With this integration, you can add data to new or existing Magnet Review cases and the data can be shared with your stakeholders directly from Axiom, either as it begins to populate in Review or when all the data transfer has been completed. Once shared, you can start work on the case in Axiom while your stakeholders are reviewing evidence using Review’s intuitive user interface and powerful search tools. 

To learn more, check out this Mobile Minute on the integration of Axiom and Magnet Review:

* included with all licenses of Axiom   

Simplifying the license requirement for Magnet Griffeye case creation from Axiom  

The volume of video and image media that needs to be reviewed and categorized in investigations can be overwhelming. To help quickly and efficiently review and analyze substantial volumes of large image files and digital video media, we’ve added the ability to create a Magnet Griffeye case directly from Axiom. Designed specifically for image and video review and analysis, Magnet Griffeye is tailored to uncovering critical evidence in vast amounts of digital media quickly. 

To learn more about Magnet Griffeye and how it can be used alongside Axiom for investigations involving large amounts of media, check out the Introduction to Magnet Griffeye

* included with Axiom Advanced and Premier term licenses  

Updated: Identify indicators of compromise 

For analysts focused on complex cyberattack investigations, the IOC Insights Dashboard in Axiom Cyber gives you an investigative edge with a unified view of critical threat data, making it an efficient starting point for any incident response investigation.  

Without a clear starting point, sifting through large and diverse datasets and multiple artifacts can slow investigations and increase the chance of missing critical details. The IOC Insights Dashboard cuts through the noise, surfaces the most relevant data, and accelerates time to resolution when investigating complex cyberthreats.  

To learn more and see the IOC Dashboard in action, visit our blog IOC Insights Dashboard: A faster, smarter way to identify threats in Magnet Axiom Cyber or explore the demo below: 

* included with Axiom Cyber licenses  

Get Magnet Axiom today! 

If you’re already using Axiom or Axiom Cyber, you can download the latest version at the Customer Portal to ensure you have the latest and greatest features and artifact coverage. If you want to try Axiom for yourself, request a free trial today

Related Resources

Blog

Introducing Magnet One Mobile Case Stream

We’re extremely excited to share some pioneering new updates to Magnet One that will supercharge your investigations with seamless forensics workflows, enabling you to get critical mobile evidence into the

June 3, 2025 • About a 5 minute view
Blog

Magnet Witness 1.8: Wyze support, multi-stream file formats, and improving review 

As Magnet Witness continues to evolve as a leading digital forensics video tool, we’ve introduced new functionality to improve the video review experience. Version 1.8 introduces layouts, single tab preview,

May 13, 2025 • About a 5 minute view
Blog

Easily share evidence from MSAB and Cellebrite with Magnet Review 

Digital investigations often involve evidence generated by different tools in the lab, and in different formats, which can complicate evidence review.   Magnet Review enables you to share digital evidence from

April 23, 2025 • About a 2 minute view
Resource Center Home

Subscribe today to hear directly from Magnet Forensics on the latest product updates, industry trends, and company news.

Start modernizing your digital investigations today.

Top