Forensic Analysis of MUICache Files in Windows
As examiners, we often find ourselves wanting to know if a program was executed on a system, when it was executed on a system, or if a program or file ever existed on a system.
Related Product: Magnet Axiom
Magnet AXIOM 6.4: Establish Your Timeline Faster Than Ever Before
Magnet AXIOM 6.4 is now available, offering you faster Timeline filtering than ever before, so you can reduce the time it takes to establish the timeline of events for your case.
Standardize Your Team’s Hash Sets Database With Hash Set Manager
Maintaining up-to-date hash sets can be a painful process, especially for those operating in offline labs. Hash Sets Manager (currently in beta) lets you easily manage a central database of hash sets that you can distribute to your team’s instances of Magnet AXIOM and AXIOM Cyber, even if they are operating offline.
Magnet AXIOM 6.3: Take Control of Evidence Processing
Magnet AXIOM 6.3 is now available, offering you more control over evidence processing, so you can apply the appropriate collection method for the case at hand.
iOS “Find My” Artifacts Support in Magnet AXIOM and AXIOM Cyber
When the Find My app (creating Find My artifacts) was originally released by Apple in 2019, it was limited to locating user devices, but the app has since expanded to find more than just users’ devices. AirTag data, for example, is also included in the Find My app since they were released in 2021.
Digital Evidence Processing: Parsing-Only Processing and Post-Process Carving
Processing evidence sources that contain terabytes of data and hundreds of thousands of artifacts is now a common and sometimes time-consuming process. Magnet AXIOM and Magnet AXIOM Cyber offer you more control over evidence processing by offering the option to process evidence with parsing-only and post-process carving—allowing you to apply the appropriate collection method for the investigation at hand.
Tips & Tricks // Customizing Magnet AXIOM for Your Investigations
When your case involves unsupported applications or custom file types, what do you do? You can actually create your own artifacts and add new file types to AXIOM!
How To Become A Mobile Forensics Investigator
Today’s criminal investigations often rely on digital evidence residing on mobile devices. During investigations, it’s the mobile forensics investigator’s responsibility to extract and collect that digital evidence. There’s no one “right path” to becoming a mobile forensics investigator.
Encore: Get More out of Your Warrant Returns with Magnet AXIOM
Investigators often have difficulty reviewing the data from warrant returns because of the various container formats and content provided. AXIOM can process warrant returns from several providers (e.g. Facebook, Google) and parse artifacts for examination, and in this session, Kim Bradley and Steve Gemperle will share some tips and tricks to get the most out of your warrant returns.
DFIRL Episode 08: The Case of Baby Eloise
In episode 8 of Digital Forensics in Real Life podcast, we will be talking about the case of baby Eloise.